Quick Notes - OSPF Authentication

OSPF Authentication

-Null, Type 0
-Clear Text, Type 1
-MD5, Type 2
keyid - is used as part of the equation to come up with the MD5 hash, Keyid must be the same on both sides

Note: Ensure that you authenticate virtual links when enabling authentication in area 0

Clear Text

-Under router ospf, "area # authentication"
-Under the interface, "ip ospf authentication-key [password]"

show ip ospf 1 interface
Serial1/2 is up, line protocol is up
  Internet Address 192.168.0.11/24, Area 0
  Process ID 1, Router ID 192.168.0.11, Network Type POINT_TO_POINT, Cost: 64
  Transmit Delay is 1 sec, State POINT_TO_POINT
  Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5
    oob-resync timeout 40
    Hello due in 00:00:00
  Supports Link-local Signaling (LLS)
  Index 1/1, flood queue length 0
  Next 0x0(0)/0x0(0)
  Last flood scan length is 1, maximum is 1
  Last flood scan time is 0 msec, maximum is 0 msec
  Neighbor Count is 1, Adjacent neighbor count is 1
    Adjacent with neighbor 192.168.0.14
  Suppress hello for 0 neighbor(s)
  Simple password authentication enabled


MD5

-Under router ospf, "area 0 authentication message-digest"
-Under the interface, "ip ospf message-digest-key 1 md5 [password]"


do show ip ospf interface
Serial1/2 is up, line protocol is up
  Internet Address 192.168.0.11/24, Area 0
  Process ID 1, Router ID 192.168.0.11, Network Type POINT_TO_POINT, Cost: 64
  Transmit Delay is 1 sec, State POINT_TO_POINT
  Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5
    oob-resync timeout 40
    Hello due in 00:00:05
  Supports Link-local Signaling (LLS)
  Index 1/1, flood queue length 0
  Next 0x0(0)/0x0(0)
  Last flood scan length is 1, maximum is 1
  Last flood scan time is 0 msec, maximum is 0 msec
  Neighbor Count is 1, Adjacent neighbor count is 1
    Adjacent with neighbor 192.168.0.14
  Suppress hello for 0 neighbor(s)
 Message digest authentication enabled
    Youngest key id is 1