When you earned your CCNA, you thought you learned every little thing there is to know about RIP. To study more, please consider checking out [http://www.cf769.com/pimp-myspace-profiles-can-attract-a-lot-of-visitors-4/ www.lifesoulutions.net/]. Close, but not rather There are some added facts you require to know to pass the BSCI exam and get 1 step closer to the CCNP exam, and 1 of these includes RIP update packet authentication. You are familiar with some benefits of using RIPv2 over RIPv1, help for VLSM chief amongst them. But one advantage that youre not introduced to in your CCNA studies is the potential to configure routing update packet authentication. You have two alternatives, clear text and MD5. Clicking [http://www.zhenqianyule2.info/showthread.php?tid=36739 dreambuilderprogram.com] certainly provides suggestions you could give to your friend. Clear text is just that - a clear text password that is visible by anyone who can choose a packet off the wire. If youre going to go to the trouble of configuring update authentication, you should use MD5. The MD stands for "Message Digest", and this is the algorithm that creates the hash value for the password that will be contained in the update packets. Not only have to the routers agree on the password, they need to agree on the authentication technique. If one particular router sends an MD5-hashed password to one more router that is configured for clear-text authentication, the update will not be accepted. debug ip rip is a fantastic command for troubleshooting authenticated updates. R1, R2, and R3 are running RIP more than a frame relay cloud. Here is how RIP authentication would be configured on these 3 routers. R1#conf t R1config#important chain RIP The key chain can have any name. R1config-keychain#crucial 1 Key chains can have multiple keys. Number them carefully when using multiples. R1config-keychain-important#essential-string CISCO This is the text string the key will use for authentication. R1config#int s0 R1config-if#ip rip authentication mode text The interface will use clear-text mode. R1config-if#ip rip authentication essential-chain RIP The interface is using key chain RIP, configured earlier. R2#conf t R2config#important chain RIP R2config-keychain#essential 1 R2config-keychain-crucial#essential-string CISCO R2config#int s0.123 R2config-subif#ip rip authentication mode text R2config-subif#ip rip authentication crucial-chain RIP R3#conf t R3config#key chain RIP R3config-keychain#key 1 R3config-keychain-essential#essential-string CISCO R3config#int s0.31 R3config-subif#ip rip authentication mode text R3config-subif#ip rip authentication key-chain RIP To use MD5 authentication rather than clear-text, basically replace the word "text" in the ip rip authentication mode command with md5. Heres what a effectively authentication RIPv2 packet looks like, courtesy of debug ip rip. Clear-text authentication is in effect and the password is "cisco". 3d04h RIP received packet with text authentication cisco 3d04h RIP received v2 update from 150.1.1.3 on Ethernet0 3d04h one hundred.../eight through ... In case you require to dig up further about [http://enzmed.com/showthread.php?tid=46125 mary manin morrissey], we recommend millions of databases people should think about investigating. in 1 hops 3d04h 150.1.2./24 through ... in 1 hops Heres what it looks like when the remote device is set for MD5 authentication and the nearby router is set for clear-text. You are going to also see this message if the password itself is incorrect. 3d04h RIP ignored v2 packet from 150.1.1.three invalid authentication "Debug ip rip" may possibly be a easy command as compared to the debugs for other protocols. but its also a really effective debug. Going To [http://www.dipity.com/marymorrisseysing236 team] seemingly provides tips you could give to your family friend. Commence making use of debugs as early as feasible in your Cisco reports to understand how router commands genuinely work.
There are no comments on this page.
Valid XHTML :: Valid CSS: :: Powered by WikkaWiki