HP 6125G HP 6125G & 6125G/XG Blade Switches Layer 3 - IP Routing Confi - Page 40
Configuring RIPv2 message authentication, Specifying a RIP neighbor
View all HP 6125G manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 40 highlights
To enable source IP address check on incoming RIP updates: Step 1. Enter system view. 2. Enter RIP view. 3. Enable source IP address check on incoming RIP messages. Command system-view rip [ process-id ] [ vpn-instance vpn-instance-name ] validate-source-address Remarks N/A N/A Optional. Enabled by default. Configuring RIPv2 message authentication In a network requiring high security, configure this task to implement RIPv2 message validity check and authentication. This feature does not apply to RIPv1 because RIPv1 does not support authentication. Although you can specify an authentication mode for RIPv1 in interface view, the configuration does not take effect. RIPv2 supports simple authentication and MD5 authentication. To configure RIPv2 message authentication: Step 1. Enter system view. 2. Enter interface view. 3. Configure RIPv2 authentication. Command system-view interface interface-type interface-number rip authentication-mode { md5 { rfc2082 [ cipher ] key-string key-id | rfc2453 [ cipher ] key-string } | simple [ cipher ] password } Specifying a RIP neighbor Usually, RIP sends messages to broadcast or multicast addresses. On non-broadcast or multicast links, you must manually specify RIP neighbors. Follow these guidelines when you specify a RIP neighbor: • Do not use the peer ip-address command when the neighbor is directly connected because the neighbor may receive both the unicast and multicast (or broadcast) of the same routing information. • If a specified neighbor is not directly connected, then disable the source address check on incoming updates. To specify a RIP neighbor: Step Command 1. Enter system view. system-view 2. Enter RIP view. rip [ process-id ] [ vpn-instance vpn-instance-name ] 3. Specify a RIP neighbor. peer ip-address 4. Disable source address check on incoming RIP updates. undo validate-source-address Remarks N/A N/A N/A Not disabled by default. 30