routerb--e0----area0-----e0--routera--s0-----area1------s0--routerc
例:
router ospf 64
area 0 authentication //plain text
area 0 authentication message-digest //md5
int e0/0
ip ospf authentication-key cisco
ip ospf message-digest-key 1 md5 cisco
//router a
int e0/0
ip addr 192.1.1.1 255.255.255.0
ip ospf authentication-key cisco
int s0/0
ip addr 193.1.1.1 255.255.255.0
ip ospf message-digest-key 1 md5 cisco
clockrate 500000
router ospf 64
netw 192.1.1.0 0.0.0.255 area 0
netw 193.1.1.0 0.0.0.255 area 1
area 0 authentication //为OSPF区域0启用简单文本认证
area 1 authentication message-digest //为OSPF区域1启用MD5认证
//router b
int e0/0
ip address 192.1.1.2 255.255.255.0
ip ospf authentication-key cisco //简单密码认证的邻居指定一个密码
router ospf 64
netw 192.1.1.0 0.0.0.255 area 0
area 0 authentication
//router c
int s0/0
ip addr 193.1.1.2 255.255.255.0
ip ospf message-digest-key 1 md5 cisco //为使用OSPF的MD5认证的邻居指定一个密码和MD5密钥。
router ospf 64
netw 193.1.1.0 0.0.0.255 area 1
area 1 authentication message-digest
//监视和测试配置
//routerc
int s0/0
no ip ospf message-digest-key 1 md5 cisco
ip ospf message-digest-key 5 md5 cisco
sh ip ospf inter s0/0
message digest authentication enabled
youngest key id is 1
debug ip ospf events
OSPF:send with youngest key 5
OSPF:rcv pkt from 193.1.1.1,serial0/0:Mismatch authentication key No message digest key 1 on interface |
