Aaron's Worthless Words

Corrections welcome.

It’s simple as pie to enable MD5 auth to a BGP peer.

R102(config-router)#neigh 192.0.2.101 pass MYKEY

Aaron Conaway

I like to lean my head to the left, hit it with the palm of my right hand, and document what knowledge falls out.

More Posts - Website

Corrections – I invite them.

1.  Create the keys in the keychain.

R101(config)#key chain KEYCHAIN
R101(config-keychain)#key 1
R101(config-keychain-key)#key-str
R101(config-keychain-key)#key-string MYKEY

2.  Enable authentication on an interface.

R101(config-if)#ip authentication mode eigrp 1 md5

3.  Associate keychain with EIGRP.

ip authentication key-chain eigrp 1 KEYCHAIN

Aaron Conaway

I like to lean my head to the left, hit it with the palm of my right hand, and document what knowledge falls out.

More Posts - Website

Corrections appreciated.

Type 0 : No authentication.  This is the default type.

R0(config-if)#ip ospf authentication null
-----
R0(config-router)#area 1 virtual-link 2.2.2.2 authentication null 

Type 1 : Clear text authentication

-----
R0(config-if)#ip ospf authentication
  - or -
R0(config-router)#area 1 authentication
R0(config-if)#ip ospf authentication-key MYKEY
-----
R0(config-router)#area 1 virtual-link 2.2.2.2 authentication-key MYKEY

Type 2 : MD5 authentication

-----
R0(config-if)#ip ospf authentication message-digest
  - or -
R0(config-router)#area 1 authentication message-digest
R0(config-if)#ip ospf message-digest-key 1 md5 MYKEY
-----
R0(config-router)#area 1 virtual-link 2.2.2.2 authentication message-digest message-digest-key 1 md5 MYKEY

Aaron Conaway

I like to lean my head to the left, hit it with the palm of my right hand, and document what knowledge falls out.

More Posts - Website