Authentication
Configuring Plain Text OSPF Passwords
© Copyright IBM Corp. 2011
OSPF protocol exchanges can be authenticated so that only trusted routing devices
can participate. This ensures less processing on routing devices that are not
listening to OSPF packets.
OSPF allows packet authentication and uses IP multicast when sending and
receiving packets. Routers participate in routing domains based on pre-defined
passwords. N/OS supports simple password (type 1 plain text passwords) and MD5
cryptographic authentication. This type of authentication allows a password to be
configured per area.
Figure 29
shows authentication configured for area 0 with the password test. Simple
authentication is also configured for the virtual link between area 2 and area 0. Area
1 is not configured for OSPF authentication.
Figure 29. OSPF Authentication
Switch 5
Switch 4
To configure simple plain text OSPF passwords on the switches shown in
use the following commands:
1. Enable OSPF authentication for Area 0 on switches 1, 2, and 3.
RS G8000(config-router-ospf)#
password
RS G8000(config-router-ospf)#
2. Configure a simple text password up to eight characters for each OSPF IP
interface in Area 0 on switches 1, 2, and 3.
RS G8000(config)#
RS G8000(config-ip-if)#
RS G8000(config-ip-if)#
RS G8000(config)#
RS G8000(config-ip-if)#
RS G8000(config-ip-if)#
RS G8000(config)#
RS G8000(config-ip-if)#
RS G8000(config-ip-if)#
Switch 2
key=blade
area 0 authentication-type
exit
interface ip 1
ip ospf key test
exit
interface ip 2
ip ospf key test
exit
interface ip 3
ip ospf key test
exit
Switch 1
Switch 3
Figure 29
267
Chapter 22. OSPF