OSPF链路MD5认证

本文主要是介绍OSPF链路MD5认证，希望对大家解决编程问题提供一定的参考价值，需要的开发者们随着小编来一起学习吧！

1、OSPF 链路MD5认证

 

a、在接口上配置

认证启动： ip ospfauthentication message-digest

认证密码：ip ospf message-digest-key1 md5 abc

 

b、认证成功，能建立邻居关系，不成功，不发送hello报文，不能建立邻居关系

R1配置

en
conf t
hostname R1int loopback 0
ip address 1.1.1.1 255.255.255.0
no shutdown
exitint f0/0
ip address 192.168.1.2 255.255.255.0
no shutdown
exitrouter ospf 1
network 192.168.1.0 0.0.0.255 area 0
network 192.168.2.0 0.0.0.255 area 0
network 1.1.1.0 0.0.0.255 area 0
exitint f0/1
ip address 192.168.2.1 255.255.255.0
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 abc
no shutdown
exit
end

 

 

R2配置

 

en
conf t
hostname R2int loopback 0
ip address 2.2.2.2 255.255.255.0
no shutdown
exitrouter ospf 1
network 192.168.3.0 0.0.0.255 area 0
network 192.168.2.0 0.0.0.255 area 0
network 2.2.2.0 0.0.0.255 area 0
exitint f0/1
ip address 192.168.2.2 255.255.255.0
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 abc
no shutdown
exitint f0/0
ip address 192.168.3.2 255.255.255.0
no shutdown
exit
end

 

 

 

R1#show ip ospf interface

FastEthernet0/0 is up, line protocol is up

 Internet address is 192.168.1.2/24, Area 0

 Process ID 1, Router ID 1.1.1.1, Network Type BROADCAST, Cost: 1

 Transmit Delay is 1 sec, State DR, Priority 1

 Designated Router (ID) 1.1.1.1, Interface address 192.168.1.2

  Nobackup designated router on this network

 Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5

   Hello due in 00:00:07

 Index 1/1, flood queue length 0

 Next 0x0(0)/0x0(0)

 Last flood scan length is 1, maximum is 1

 Last flood scan time is 0 msec, maximum is 0 msec

 Neighbor Count is 0, Adjacent neighbor count is 0

 Suppress hello for 0 neighbor(s)

Loopback0 is up, line protocol is up

 Internet address is 1.1.1.1/24, Area 0

 Process ID 1, Router ID 1.1.1.1, Network Type LOOPBACK, Cost: 1

 Loopback interface is treated as a stub Host

FastEthernet0/1 is up, line protocol is up

 Internet address is 192.168.2.1/24, Area 0

 Process ID 1, Router ID 1.1.1.1, Network Type BROADCAST, Cost: 1

 Transmit Delay is 1 sec, State BDR, Priority 1

 Designated Router (ID) 2.2.2.2, Interface address 192.168.2.2

 Backup Designated Router (ID) 1.1.1.1, Interface address 192.168.2.1

 Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5

   Hello due in 00:00:07

 Index 3/3, flood queue length 0

 Next 0x0(0)/0x0(0)

 Last flood scan length is 1, maximum is 1

 Last flood scan time is 0 msec, maximum is 0 msec

 Neighbor Count is 1, Adjacent neighbor count is 1

   Adjacent with neighbor 2.2.2.2 (Designated Router)

 Suppress hello for 0 neighbor(s)

 Message digest authentication enabled

   Youngest key id is 1

 

解释：Message digest authentication enabled链路认证md5启动

 

 

 

 

R1#show ip ospf neighbor

 

Neighbor ID     Pri  State           Dead Time   Address         Interface

2.2.2.2           1  FULL/DR         00:00:32    192.168.2.2     FastEthernet0/1

 

 

 

 

R1#show ip ospf database

           OSPF Router with ID (1.1.1.1) (Process ID 1)

 

                Router Link States (Area 0)

 

Link ID         ADV Router      Age         Seq#       Checksum Link count

1.1.1.1         1.1.1.1         472         0x80000007 0x0022ba 3

2.2.2.2         2.2.2.2         472         0x80000008 0x00f1da 3

 

                Net Link States (Area 0)

Link ID        ADV Router      Age         Seq#       Checksum

192.168.2.2     2.2.2.2         549         0x80000002 0x00bae1

 

解释：认证成功，能建立邻居关系。

这篇关于OSPF链路MD5认证的文章就介绍到这儿，希望我们推荐的文章对编程师们有所帮助！

---