RIP V2 MD5 authentication

Hi, I want to implement RIP V2 MD5 authentication in an existing network. RIP V2 is up and running already. If I turn on MD5 authenticattion on a router or switch, will it lose connectivity with the rest of the network until I can turn on authentication on the rest of the network devices.
rajarorausAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
Khandakar Ashfaqur RahmanConnect With a Mentor Expert/ConsultantCommented:
You need to configure all the routers MD5 at the same time.At first, write down all of your router's new configuration and double check that configuration is ok.You can use Cisco Packet Tracer software to verify your configuration.
http://www.ccna4u.org/2010/11/packet-tracer-version-531-software.html
Then configure remote router first.Then step by step configure other routers.
0
 
FostWareCommented:
It may seem a stupid question, why are you using RIP in particular?
0
 
SandyCommented:
no this will not loose the connectivity until unless you configured it for auth required mode.
0
Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

 
Khandakar Ashfaqur RahmanExpert/ConsultantCommented:
It won't lose the connection immediately .But after you enable MD5 into router it'll generate error "Invalid Authentication".If you debug then you can see this error.
#debug ip rip
After few seconds routes will become down and it'll show : Routes are possibly down.Then  after few moments routes will be deleted by flush timers.
0
 
rajarorausAuthor Commented:
so rigan123, you're saying that it will loose connectivity?(few Seconds)?
0
 
Khandakar Ashfaqur RahmanExpert/ConsultantCommented:
It'll live few moments.Then after few moments it'll become down completely.Because flush timers will update "Invalid Authentication" error.Your existing routes will be deleted too.
0
 
rajarorausAuthor Commented:
so how would you recommend doing this?
0
 
Nayyar HH (CCIE RS)Connect With a Mentor Network ArchitectCommented:
RIP authentication is configured on a per interface basis; changes you make will only after that link, so if you have redundant paths in your network you should be OK.

Another option to consider is to increase the flush time; This is the amount of time (in seconds) that must pass before a route is removed from the routing table

Command

timers basic update invalid holddown flush [sleeptime]

I also support the practise of configuring devices further downstream first and working backwards

In addition use the "reload in" command to reload the box should things go wrong;
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.