|
iPads users must read this : perfect Mac DVD ripping software Whenever you attained your CCNA, you believed you discovered every thing there is certainly to understand about RIP. Shut, although not fairly! There are several added information you have to know to move the BSCI examination and have a single stage nearer to your CCNP examination, and 1 of people requires RIP update packet authentication. You happen to be acquainted with some benefits of employing RIPv2 more than RIPv1, assist for VLSM chief between them. But a single gain that you might be not released to within your CCNA scientific studies could be the capacity to configure routing update packet authentication. You've two possibilities, distinct text and MD5. Obvious text is simply that - a obvious text password which is visible by anybody who will decide on a packet off the wire. If you are likely to head to the difficulty of configuring update authentication, you must use MD5. The MD stands for "Message Digest", and this is actually the algorithm that makes the hash worth for your password that may be contained inside the update packets. Not merely need to the routers concur within the password, they have to concur around the authentication approach. If one particular router sends an MD5-hashed password to an additional router that is certainly configured for clear-text authentication, the update won't be accepted. debug ip rip is an excellent command for troubleshooting authenticated updates. R1, R2, and R3 are operating RIP more than a body relay cloud. Right here is how RIP authentication can be configured on these 3 routers. R1#conf t R1(config)#key chain RIP < The key chain can have any name. > R1(config-keychain)#key one < Key chains can have multiple keys. Number them carefully when using multiples. > R1(config-keychain-key)#key-string CISCO < This is the text string the key will use for authentication. > R1(config)#int s0 R1(config-if)#ip rip authentication mode text < The interface will use clear-text mode. > R1(config-if)#ip rip authentication key-chain RIP < The interface is using key chain RIP, configured earlier. > R2#conf t R2(config)#key chain RIP R2(config-keychain)#key one R2(config-keychain-key)#key-string CISCO R2(config)#int s0.123 R2(config-subif)#ip rip authentication mode text R2(config-subif)#ip rip authentication key-chain RIP R3#conf t R3(config)#key chain RIP R3(config-keychain)#key one R3(config-keychain-key)#key-string CISCO R3(config)#int s0.31 R3(config-subif)#ip rip authentication mode text R3(config-subif)#ip rip authentication key-chain RIP To make use of MD5 authentication as opposed to clear-text, basically substitute the term "text" while in the ip rip authentication mode command with md5. This is what a effectively authentication RIPv2 packet appears like, courtesy of debug ip rip. Clear-text authentication is in influence and also the password is "cisco". 3d04h: RIP: obtained packet with text authentication cisco 3d04h: RIP: acquired v2 update from one hundred fifty.one.one.three on Ethernet0 3d04h: a hundred.0.0.0/8 through 0.0.0.0 in one hops 3d04h: a hundred and fifty.one.two.0/24 by way of 0.0.0.0 in one hops Here is what it seems to be like once the remote machine is set for MD5 authentication and also the neighborhood router is set for clear-text. You may also see this communication in case the password by itself is incorrect. 3d04h: RIP: overlooked v2 packet from a hundred and fifty.one.one.three (invalid authentication) "Debug ip rip" may possibly be considered a basic command when compared with the debugs for other protocols. but it can be also an extremely strong debug. Begin making use of debugs as early as you can within your Cisco scientific studies to find out how router instructions genuinely perform! |
