OSPF路由認(rèn)證(鄰居、區(qū)域、虛鏈路)

簡單記錄一下，沒什么特別的。

OSPF認(rèn)證實(shí)驗(yàn)方案：

1、R1與R2進(jìn)行鄰居md5認(rèn)證

2、area 2進(jìn)行區(qū)域md5認(rèn)證

3、R1與R2之間創(chuàng)建基于area1的虛鏈路，進(jìn)行虛鏈路md5認(rèn)證

R1主要配置信息：

!
interface Loopback0
ip address 1.1.1.1 255.255.255.255
ip ospf 1 area 0
!
interface FastEthernet0/0
ip address 192.168.1.1 255.255.255.0
ip ospf authentication message-digest //在接口上啟用OSPF鄰居md5認(rèn)證
ip ospf message-digest-key 1 md5 cisco //在接口上配置OSPF鄰居認(rèn)證密鑰
ip ospf 1 area 1
!
router ospf 1
router-id 1.1.1.1
log-adjacency-changes
area 1 virtual-link 2.2.2.2 authentication message-digest //在虛鏈路上啟用md5認(rèn)證
area 1 virtual-link 2.2.2.2 message-digest-key 1 md5 vlink //創(chuàng)建虛鏈路并配置OSPF虛鏈路認(rèn)證密鑰
!

R2主要配置信息：

!
interface FastEthernet0/0
ip address 192.168.1.2 255.255.255.0
ip ospf authentication message-digest //在接口上啟用OSPF鄰居md5認(rèn)證
ip ospf message-digest-key 1 md5 cisco //在接口上配置OSPF鄰居認(rèn)證密鑰
ip ospf 1 area 1
!
interface FastEthernet1/0
ip address 192.168.2.1 255.255.255.0
ip ospf message-digest-key 1 md5 area //在區(qū)域所屬接口上配置區(qū)域認(rèn)證密鑰
ip ospf 1 area 2
!
router ospf 1
router-id 2.2.2.2
log-adjacency-changes
area 1 virtual-link 1.1.1.1 authentication message-digest //在虛鏈路上啟用md5認(rèn)證
area 1 virtual-link 1.1.1.1 message-digest-key 1 md5 vlink //創(chuàng)建虛鏈路并配置OSPF虛鏈路認(rèn)證密鑰
area 2 authentication message-digest //在area2上配置OSPF區(qū)域md5認(rèn)證
!

R3主要配置信息：

!
interface FastEthernet0/0
ip address 192.168.2.2 255.255.255.0
ip ospf message-digest-key 1 md5 area //在區(qū)域所屬接口上配置區(qū)域認(rèn)證密鑰
ip ospf 1 area 2
!
router ospf 1
router-id 3.3.3.3
log-adjacency-changes
area 2 authentication message-digest //在area2上配置OSPF區(qū)域md5認(rèn)證
!

生活不易，碼農(nóng)辛苦
如果您覺得本網(wǎng)站對您的學(xué)習(xí)有所幫助,可以手機(jī)掃描二維碼進(jìn)行捐贈