Dell Z9500 Command Reference Manual page 1334

Hide thumbs Also See for Z9500:

Table of Contents

Not configured.

ROUTER OSPFv3

This guide is platform-specific. For command information about other platforms,

refer to the relevant Dell Networking OS Command Line Reference Guide.

The following is a list of the Dell Networking OS version history for this command.

Before you enable IPsec authentication on an OSPFv3 area, you must first enable

OSPFv3 globally on the router. Configure the same authentication policy (same SPI

and key) on each interface in an OSPFv3 link.

An SPI number must be unique to one IPsec security policy (authentication or

encryption) on the router.

If you have enabled IPsec encryption in an OSPFv3 area with the area

encryption command, you cannot use the area authentication command in

the area at the same time.

The configuration of IPsec authentication on an interface-level takes precedence

over an area-level configuration. If you remove an interface configuration, an area

authentication policy that has been configured is applied to the interface.

To remove an IPsec authentication policy from an OSPFv3 area, enter the no area

area-id authentication spi number command.

ipv6 ospf authentication

show crypto ipsec policy

For MD5 authentication, the key must be 32 hex digits (non-

encrypted) or 64 hex digits (encrypted).

For SHA-1 authentication, the key must be 40 hex digits

(non-encrypted) or 80 hex digits (encrypted).

Introduced on the Z9500.

Introduced on the S4810 and Z9000.

Introduced on the S4820T.

Introduced on the E-Series TeraScale.

– configures an IPsec authentication policy on an OSPFv3

– displays the configuration of IPsec authentication

Open Shortest Path First (OSPFv2 and OSPFv3)