AgnolaEdwards652

来自NoteExpress知识库
2015年4月20日 (一) 15:37AgnolaEdwards652讨论 | 贡献的版本

(差异) ←上一版本 | 最后版本 (差异) | 下一版本→ (差异)
跳转至: 导航搜索

When you earned your CCNA, you thought you learned every little thing there is to know about RIP. Close, but not rather! There are some extra specifics you require to know to pass the BSCI exam and get one step closer to the CCNP exam, and one particular of these entails RIP update packet authentication. You are familiar with some advantages of using RIPv2 more than RIPv1, support for VLSM chief among them. But one benefit that youre not introduced to in your CCNA studies is the potential to configure routing update packet authentication. You have two possibilities, clear text and MD5. Click here How To Produce Adsense On Wordpress With Adsense Plugins - penelop2.compenelop2.com to compare when to deal with it. Clear text is just that - a clear text password that is visible by any person who can choose a packet off the wire. If you are going to go to the difficulty of configuring update authentication, you really should use MD5. The MD stands for Message Digest, and this is the algorithm that generates the hash value for the password that will be contained in the update packets. Not only must the routers agree on the password, they must agree on the authentication approach. If 1 router sends an MD5-hashed password to an additional router that is configured for clear-text authentication, the update will not be accepted. debug ip rip is a great command for troubleshooting authenticated updates. R1, R2, and R3 are running RIP more than a frame relay cloud. Right here is how RIP authentication would be configured on these 3 routers. R1#conf t R1config#important chain RIP < The key chain can have any name. R1config-keychain#crucial 1 < Key chains can have multiple keys. Number them carefully when using multiples. R1config-keychain-key#important-string CISCO < This is the text string the key will use for authentication. R1config#int s0 R1config-if#ip rip authentication mode text < The interface will use clear-text mode. R1config-if#ip rip authentication crucial-chain RIP < The interface is using key chain RIP, configured earlier. R2#conf t R2config#crucial chain RIP R2config-keychain#key 1 R2config-keychain-essential#crucial-string CISCO R2config#int s0.123 R2config-subif#ip rip authentication mode text R2config-subif#ip rip authentication key-chain RIP R3#conf t R3config#important chain RIP R3config-keychain#important 1 R3config-keychain-important#key-string CISCO R3config#int s0.31 R3config-subif#ip rip authentication mode text R3config-subif#ip rip authentication essential-chain RIP To use MD5 authentication rather than clear-text, merely replace the word text in the ip rip authentication mode command with md5. Heres what a effectively authentication RIPv2 packet looks like, courtesy of debug ip rip. Clear-text authentication is in impact and the password is cisco. 3d04h: RIP: received packet with text authentication cisco 3d04h: RIP: received v2 update from 150.1.1.three on Ethernet0 3d04h: one hundred.../eight via ... in 1 hops 3d04h: 150.1.2./24 by means of ... in 1 hops Heres what it looks like when the remote device is set for MD5 authentication and the local router is set for clear-text. This riveting Will FFAs get me banned from Google? - Crystal Waters Chat essay has many disturbing suggestions for when to allow for it. Youll also see this message if the password itself is incorrect. 3d04h: RIP: ignored v2 packet from 150.1.1.three invalid authentication Debug ip rip may be a easy command as compared to the debugs for other protocols. but it is also a really strong debug. Dig up more about Myspace Layouts Is The Heart Of Every Profile by visiting our engaging article directory. Commence utilizing debugs as early as possible in your Cisco studies to find out how router commands truly operate!. We found out about mary morrissey website by searching newspapers.