PassCervantez453

When you earned your CCNA, you thought you learned every thing there is to know about RIP. Close, but not fairly! There are some further details you require to know to pass the BSCI exam and get one particular step closer to the CCNP exam, and one of those includes RIP update packet authentication. Youre familiar with some advantages of using RIPv2 more than RIPv1, assistance for VLSM chief among them. But 1 advantage that you happen to be not introduced to in your CCNA studies is the ability to configure routing update packet authentication. You have two options, clear text and MD5. Clear text is just that - a clear text password that is visible by anyone who can pick a packet off the wire. If you happen to be going to go to the difficulty of configuring update authentication, you ought to use MD5. The MD stands for Message Digest, and this is the algorithm that generates the hash value for the password that will be contained in the update packets. Not only have to the routers agree on the password, they should agree on the authentication approach. If a single router sends an MD5-hashed password to another router that is configured for clear-text authentication, the update will not be accepted. debug ip rip is a fantastic command for troubleshooting authenticated updates. R1, R2, and R3 are running RIP over a frame relay cloud. To get one more perspective, please glance at: source. Here is how RIP authentication would be configured on these 3 routers. R1#conf t R1config#essential chain RIP < The key chain can have any name. R1config-keychain#crucial 1 < Key chains can have multiple keys. Number them carefully when using multiples. R1config-keychain-key#important-string CISCO < This is the text string the key will use for authentication. R1config#int s0 R1config-if#ip rip authentication mode text < The interface will use clear-text mode. R1config-if#ip rip authentication key-chain RIP < The interface is using key chain RIP, configured earlier. R2#conf t R2config#essential chain RIP R2config-keychain#crucial 1 R2config-keychain-important#key-string CISCO R2config#int s0.123 R2config-subif#ip rip authentication mode text R2config-subif#ip rip authentication crucial-chain RIP R3#conf t R3config#essential chain RIP R3config-keychain#crucial 1 R3config-keychain-key#important-string CISCO R3config#int s0.31 R3config-subif#ip rip authentication mode text R3config-subif#ip rip authentication essential-chain RIP To use MD5 authentication rather than clear-text, simply replace the word text in the ip rip authentication mode command with md5. Heres what a successfully authentication RIPv2 packet looks like, courtesy of debug ip rip. If you have an opinion about families, you will maybe need to research about Link Cloaking: Cloak and Dagger in Affiliate Advertising. Clear-text authentication is in impact and the password is cisco. 3d04h: RIP: received packet with text authentication cisco 3d04h: RIP: received v2 update from 150.1.1.3 on Ethernet0 3d04h: 100.../8 via ... in 1 hops 3d04h: 150.1.2./24 via ... in 1 hops Heres what it looks like when the remote device is set for MD5 authentication and the local router is set for clear-text. Youll also see this message if the password itself is incorrect. 3d04h: RIP: ignored v2 packet from 150.1.1.three invalid authentication Debug ip rip may possibly be a simple command as compared to the debugs for other protocols. but it really is also a extremely strong debug. To get fresh information, please consider having a gander at: see perry belcher. Start employing debugs as early as attainable in your Cisco scientific studies to understand how router commands truly operate!. Be taught further on this affiliated website - Click here: meet perry belcher.