Network OS Command Reference
Network OS Command Reference
NOS v3.0.0
53-1002562-03
documentation@brocade.com


Network OS Commands : ip ospf md5-authentication

ip ospf md5-authentication
Configures MD5 password and authentication change hold time.
Synopsis
ip ospf md5-authentication {key-activation-wait-time wait-time | key-id id MD5_key {0 | 2 | 255} ospf_password}
no ip ospf md5-authentication key-id
Operands
key-activation-wait-time . Sets the time that OSPF waits before activating a new key.
wait-time Time (in seconds) OSPF waits before activating a new MD5 key. This parameter provides a graceful transition from one MD5 key to another without disturbing the network. All new packets transmitted after the wait time ends will use the newly configured MD5 Key. OSPF packets that contain the old MD5 key are accepted for up to five minutes after the new MD5 key is in operation. The default value is 300. The range is 0 to 14400.
key-id Sets MD5 key and OSPF password.
id MD5_key The num is a number from 1 – 255 and identifies the MD5 key that is being used. This parameter is required to differentiate among multiple keys defined on a router. When MD5 is enabled, the key is an alphanumeric password of up to 16 characters that is later encrypted and included in each OSPF packet transmitted. You must enter a password in this field when the system is configured to operate with either simple or MD5 authentication. By default, the MD5 authentication key is encrypted.
0 password No encryption. OSPF processes password as a plain text password and shows the unencrypted password in the show running command output as follows:
key 0 passwd
2 password Expects the user to provide the encrypted password, preceded by a $ sign, and shows the encrypted password in the show running command output as follows:
key 2 $ci1pVT0=
255 password Expects the user to provide the encrypted password, and 255 internally maps to 2. OSPF shows the encrypted password in the show running command output as follows:
key 2 $ci1pVT0=
password OSPF processes password as a plain text password. OSPF internally encrypts this password as if encryption key 2 was specified and shows the encrypted password in the show running command output as follows:
key 2 $ci1pVT0=
Default
No authentication.
Command Modes
Interface subconfiguration mode (fo, gi, te, Ve)
Description
Sets/resets MD5 password and/or authentication change hold time on the interface to which you are connected.
Usage Guidelines
Use the no ip ospf md5-authentication key-id command to disable this configuration.
Examples
The following command sets authentication only on the OSPF fortygigabitethernet interface 100/0/1. To enter an MD5 id/key of 255 key and a plain text OSPF password called brocade that OSPF will encrypt as if encryption key 2 was specified:
switch(config)# interface fortygigabitethernet 100/0/1
switch(conf-if-fo-100/0/1)# ip ospf md5 key-id 255 key brocade
The following command sets authentication only on the OSPF Ve interface 24. To enter an MD5 id/key of 255 key and a plain text OSPF password called brocade that OSPF will encrypt as if encryption key 2 was specified:
switch(config)# rbridge-id 178
switch(config-rbridge-id-178)# interface Ve 24
switch(config-Ve-24)# ip ospf md5 key-id 255 key brocade
See Also
interface,interface Ve, ip ospf area, ip ospf auth-change-wait-time, ip ospf authentication-key, ip ospf cost, ip ospf database-filter, ip ospf dead-interval, ip ospf hello-interval, ip ospf mtu-ignore, ip ospf network, ip ospf passive, ip ospf priority, ip ospf retransmit-interval, ip ospf transmit-delay

Network OS Commands : ip ospf md5-authentication