|
This tutorial shows how to use authentication with RIP. This tutorial is based on the basic RIPv2 tutorial.:
The authentication in RIP and EIGRP is based on key chains. On both routers a key chain has to be configured. The name of the key chain can be different in both systems, the password must be the same.
R2#configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
R2(config)#key chain RIP
R2(config-keychain)#key 1
R2(config-keychain-key)#key-string CISCO
R2(config-keychain-key)#end
R2#
R2#show key chain
Key-chain RIP:
key 1 -- text "CISCO"
accept lifetime (always valid) - (always valid) [valid now]
send lifetime (always valid) - (always valid) [valid now]
R2#
The key chain is used in the interface that is speaking RIP to the neighbor, not in the routing process. In this example we use a MD5 hash for authetication, "mode text" would be an alternative.
R2#configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
R2(config)#interface serial 1/0
R2(config-if)#ip rip authentication mode md5
R2(config-if)#ip rip authentication key-chain RIP
R2(config-if)#end
R2#
h running-config interface serial 1/0
Building configuration...
Current configuration : 192 bytes
!
interface Serial1/0
description to R2 Serial 1/0
ip address 192.168.100.2 255.255.255.252
ip rip authentication mode md5
ip rip authentication key-chain RIP
serial restart-delay 0
end
R2#
After configuring this on both routers the RIPv2 routers should be exchanged.
The configuration for this tutorial can be downloaded from here.
|
