Md5-Authentication; Mpls Ldp - HP FlexFabric 12500 Command Reference Manual
Routing switch series, mpls
Hide thumbs
Also See for FlexFabric 12500:
- Configuration manual (402 pages) ,
- Network management and monitoring command reference (320 pages) ,
- Command reference manual (154 pages)
Table of Contents
Advertisement
md5-authentication
Use md5-authentication to enable LDP MD5 authentication.
Use undo md5- authentication to restore the default.
Syntax
md5-authentication peer-lsr-id { cipher | plain } password
undo md5-authentication peer-lsr-id
Default
LDP MD5 authentication is disabled.
Views
LDP view, LDP-VPN instance view
Predefined user roles
network-admin
mdc-admin
Parameters
peer-lsr-id: Specifies the LSR ID of a peer.
cipher: Sets a ciphertext key.
plain: Sets a plaintext key.
password: Specifies a case-sensitive key string. If plain is specified, it must be a plaintext string of 1 to 16
characters. If cipher is specified, it must be a ciphertext string of 1 to 53 characters.
Usage guidelines
To improve security for LDP sessions, you can configure MD5 authentication for the underlying TCP
connections to check the integrity of LDP messages.
The local LSR and the peer LSR must have the same key. Otherwise, they cannot establish a TCP
connection.
After you change the MD5 authentication key, the local LSR uses the new key to reestablish an LDP
session with the specified peer.
For security purposes, all keys, including keys configured in plain text, are saved in cipher text.
Examples
# Enable LDP MD5 authentication for peer 3.3.3.3 in the public network, and set a plaintext key of pass.
<Sysname> system-view
[Sysname] mpls ldp
[Sysname-ldp] md5-authentication 3.3.3.3 plain pass
Related commands
display mpls ldp peer
mpls ldp
Use mpls ldp to enable LDP globally and enter LDP view.
48
Advertisement
Table of Contents
