OSPF路由認證(鄰居�、區域����、虛鏈路)
來源:程序員人生 發布時間:2013-10-15 09:38:53 閱讀次數:2811次
簡單記錄一下,沒什么特別的����。
OSPF認證實驗方案:
1��、R1與R2進行鄰居md5認證
2、area 2進行區域md5認證
3�、R1與R2之間創建基于area1的虛鏈路�����,進行虛鏈路md5認證
R1主要配置信息:
!
interface Loopback0
ip address 1.1.1.1 255.255.255.255
ip ospf 1 area 0
!
interface FastEthernet0/0
ip address 192.168.1.1 255.255.255.0
ip ospf authentication message-digest //在接口上啟用OSPF鄰居md5認證
ip ospf message-digest-key 1 md5 cisco //在接口上配置OSPF鄰居認證密鑰
ip ospf 1 area 1
!
router ospf 1
router-id 1.1.1.1
log-adjacency-changes
area 1 virtual-link 2.2.2.2 authentication message-digest //在虛鏈路上啟用md5認證
area 1 virtual-link 2.2.2.2 message-digest-key 1 md5 vlink //創建虛鏈路并配置OSPF虛鏈路認證密鑰
!
R2主要配置信息:
!
interface FastEthernet0/0
ip address 192.168.1.2 255.255.255.0
ip ospf authentication message-digest //在接口上啟用OSPF鄰居md5認證
ip ospf message-digest-key 1 md5 cisco //在接口上配置OSPF鄰居認證密鑰
ip ospf 1 area 1
!
interface FastEthernet1/0
ip address 192.168.2.1 255.255.255.0
ip ospf message-digest-key 1 md5 area //在區域所屬接口上配置區域認證密鑰
ip ospf 1 area 2
!
router ospf 1
router-id 2.2.2.2
log-adjacency-changes
area 1 virtual-link 1.1.1.1 authentication message-digest //在虛鏈路上啟用md5認證
area 1 virtual-link 1.1.1.1 message-digest-key 1 md5 vlink //創建虛鏈路并配置OSPF虛鏈路認證密鑰
area 2 authentication message-digest //在area2上配置OSPF區域md5認證
!
R3主要配置信息:
!
interface FastEthernet0/0
ip address 192.168.2.2 255.255.255.0
ip ospf message-digest-key 1 md5 area //在區域所屬接口上配置區域認證密鑰
ip ospf 1 area 2
!
router ospf 1
router-id 3.3.3.3
log-adjacency-changes
area 2 authentication message-digest //在area2上配置OSPF區域md5認證
!
生活不易,碼農辛苦
如果您覺得本網站對您的學習有所幫助,可以手機掃描二維碼進行捐贈
