Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1878
Views
0
Helpful
1
Replies

How to secure IPv6 P2P Link between two distinguished Routers using ospfv3

MANFRED LIEBCHEN
Level 1
Level 1

‎03-31-2015 01:27 AM - edited ‎03-01-2019 05:46 PM

I have two Routers - one Catalyst 6500 Sup720 and one Nexus 7009 SUP2-E - connected

via ospfv3 P2P Link using  /64 IPv6 Networkaddresses. What must be configured in order to secure this P2P Link against possible security attacks ! Any example configuration available ?

Greetings Manfred

Labels:
0 Helpful
1 Reply 1

Seb Rupik
VIP Alumni
VIP Alumni

‎03-31-2015 08:08 AM

Hi Manfred,

You should configure authentication on both of the P2P interfaces/ SVIs:

 

!
int te1/0/1
   desc 6500 uplink
   ipv6 ospf authentication ipsec spi 500 sha1 <40_bit_hash>
!

 

!
int te1/0/1
   desc 7009 uplink
   ipv6 ospf authentication ipsec spi 500 sha1 <40_bit_hash>
!

 

...ensure that either end of the link have same spi index value and obviously hash value too.

 

cheers,

Seb.

 

 

0 Helpful
Customers Also Viewed These Support Documents