Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 552
  • Last Modified:

RIP V2 MD5 authentication

Hi, I want to implement RIP V2 MD5 authentication in an existing network. RIP V2 is up and running already. If I turn on MD5 authenticattion on a router or switch, will it lose connectivity with the rest of the network until I can turn on authentication on the rest of the network devices.
0
rajaroraus
Asked:
rajaroraus
2 Solutions
 
FostWareCommented:
It may seem a stupid question, why are you using RIP in particular?
0
 
SandyCommented:
no this will not loose the connectivity until unless you configured it for auth required mode.
0
 
Khandakar Ashfaqur RahmanExpert/ConsultantCommented:
It won't lose the connection immediately .But after you enable MD5 into router it'll generate error "Invalid Authentication".If you debug then you can see this error.
#debug ip rip
After few seconds routes will become down and it'll show : Routes are possibly down.Then  after few moments routes will be deleted by flush timers.
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
rajarorausAuthor Commented:
so rigan123, you're saying that it will loose connectivity?(few Seconds)?
0
 
Khandakar Ashfaqur RahmanExpert/ConsultantCommented:
It'll live few moments.Then after few moments it'll become down completely.Because flush timers will update "Invalid Authentication" error.Your existing routes will be deleted too.
0
 
rajarorausAuthor Commented:
so how would you recommend doing this?
0
 
Khandakar Ashfaqur RahmanExpert/ConsultantCommented:
You need to configure all the routers MD5 at the same time.At first, write down all of your router's new configuration and double check that configuration is ok.You can use Cisco Packet Tracer software to verify your configuration.
http://www.ccna4u.org/2010/11/packet-tracer-version-531-software.html
Then configure remote router first.Then step by step configure other routers.
0
 
Nayyar HH (CCIE RS)Network ArchitectCommented:
RIP authentication is configured on a per interface basis; changes you make will only after that link, so if you have redundant paths in your network you should be OK.

Another option to consider is to increase the flush time; This is the amount of time (in seconds) that must pass before a route is removed from the routing table

Command

timers basic update invalid holddown flush [sleeptime]

I also support the practise of configuring devices further downstream first and working backwards

In addition use the "reload in" command to reload the box should things go wrong;
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now