Re: OSPF virtual link MD5 authentication not working

borek · ‎08-26-2003

I have set-up a virtual link with MD5 authentication. Then I decided to try whether the authentication really works, so I have put different password on one end of the VL. To my surprise, virtual link gets established even when password do not match -- and in fact even when authentication config is missing completely on one end of the link. Config is as follows:

Router1:

area 5 virtual-link xx.x.0.1 authentication message-digest

area 5 virtual-link xx.x.0.1 message-digest-key 1 md5 annular2

Router2:

area 5 virtual-link xx.x.0.12 authentication message-digest

area 5 virtual-link xx.x.0.12 message-digest-key 1 md5 annular

MD5 authentication is enabled in area 0 (as required by UniverCD documentation -- funny, as this is not mentioned in Parkhurst's OSPF handbook).

Any ideas what may have gone wrong?

Borek

ruwhite · ‎08-26-2003

It looks broken to me.... Can you open a tac case? If not, email me directly, and I can work on getting some information about what's going on.

Russ.W

riw@cisco.com

sun816 · ‎09-05-2003

When they established the illegal vlnk connection, what's the

youngest key of MD5?