Allied Telesis AR2050V Command Reference Manual page 1010

OSPF 3 IP 6 C
V FOR V OMMANDS
AREA AUTHENTICATION IPSEC SPI
NOTE
with this command, or on a VLAN interface with the
command.
When you configure authentication for an area, the security policy is applied to all
VLAN interfaces in the area. However, Allied Telesis recommends a different
authentication security policy is applied to each interface for higher security.
If you apply the ipv6 ospf authentication null command this affects
authentication configured on both the VLAN interface and the OSPFv3 area.
This is due to OSPFv3 hello messages ingressing VLAN interfaces, which are part of area
authentication, not being authenticated. So neighbors time out.
Example To enable MD5 authentication with a 32 hexadecimal character key for OPSPF area
1, use the commands:
awplus#
awplus(config)#
awplus(config-router)#
1234567890ABCDEF1234567890ABCDEF
To enable SHA-1 authentication with a 40 hexadecimal character key for OPSPF
area 1, use the commands:
awplus#
awplus(config)#
awplus(config-router)#
sha1 1234567890ABCDEF1234567890ABCDEF12345678
To disable authentication for OPSPF area 1, use the commands:
awplus#
awplus(config)#
awplus(config-router)#
Related area encryption ipsec spi esp
Commands
area virtual-link authentication ipsec spi
area virtual-link encryption ipsec spi
ipv6 ospf authentication spi
ipv6 ospf encryption spi esp
show ipv6 ospf
C613-50186-01 Rev B
: You can configure an authentication security policy (SPI) on an OSPFv3 area
configure terminal
router ipv6 ospf
configure terminal
router ipv6 ospf
configure terminal
router ipv6 ospf
Command Reference for AR2050V
AlliedWare Plus™ Operating System - Version 5.4.7-1.x
ipv6 ospf authentication spi
area 1 authentication ipsec spi 1000 md5
area 1 authentication ipsec spi 1000
no area 1 authentication ipsec spi 1000
1010