RIP Authentification

Configuration RIP simple :

R1#conf t
R1(config)#router rip
R1(config-router)#version 2
R1(config-router)#no auto-summary
R1(config-router)#network 10.0.0.0
R1(config-router)#network 1.0.0.0
 R2#conf t
R2(config)#router rip
R2(config-router)#version 2
R2(config-router)#no auto-summary
R2(config-router)#network 10.0.0.0
R2(config-router)#network 2.0.0.0
 R3#conf t
R3(config)#router rip
R3(config-router)#version 2
R3(config-router)#no auto-summary
R3(config-router)#network 10.0.0.0
R3(config-router)#network 3.0.0.0

vérifications:

 R1#show ip route rip
R    2.0.0.0/8 [120/2] via 10.1.1.3, 00:00:13, FastEthernet0/0
R    3.0.0.0/8 [120/1] via 10.1.1.3, 00:00:16, FastEthernet0/0
     10.0.0.0/24 is subnetted, 2 subnets
R       10.2.2.0 [120/1] via 10.1.1.3, 00:00:16, FastEthernet0/0
 R2#show ip route rip
R    1.0.0.0/8 [120/2] via 10.2.2.3, 00:00:11, FastEthernet0/0
R    3.0.0.0/8 [120/1] via 10.2.2.3, 00:00:11, FastEthernet0/0
     10.0.0.0/24 is subnetted, 2 subnets
R       10.1.1.0 [120/1] via 10.2.2.3, 00:00:11, FastEthernet0/0
 R3#show ip route rip
R    1.0.0.0/8 [120/1] via 10.1.1.1, 00:00:27, FastEthernet0/0
R    2.0.0.0/8 [120/1] via 10.2.2.2, 00:00:09, FastEthernet0/1

Configuration de l’authentification RIPv2 « clear text » entre R1 et R3

 R1#conf t
R1(config)#key chain TEST12345
R1(config-keychain)#key 1
R1(config-keychain-key)#key-string CISCO12345

R1(config)#interface fa0/0
R1(config-if)#ip rip authentication key-chain TEST12345
 R3#conf t
R3(config)#key chain TEST12345
R3(config-keychain)#key 1
R3(config-keychain-key)#key-string CISCO12345

R3(config)#int fa0/0
R3(config-if)#ip rip authentication key-chain TEST12345

Configuration de l’authentification RIPv2 « MD5 » entre R3 et R2

 R3#conf t
R3(config)#key chain TEST123
R3(config-keychain)#key 1
R3(config-keychain-key)#key-string cisco123

R3(config)#interface fa0/1
R3(config-if)#ip rip authentication key-chain TEST123
R3(config-if)#ip rip authentication mode md5
 R2#conf t
R2(config)#key chain TEST123
R2(config-keychain)#key 1
R2(config-keychain-key)#key-string cisco123

R2(config)#int fa0/0
R2(config-if)#ip rip authentication key-chain TEST123
R2(config-if)#ip rip authentication mode md5

Vérifications :

  
R2#debug ip rip
RIP protocol debugging is on

*Mar 11 03:50:30.331: RIP: received packet with MD5 authentication
*Mar 11 03:50:30.331: RIP: received v2 update from 10.2.2.3 on FastEthernet0/0
*Mar 11 03:50:30.331:      1.0.0.0/8 via 0.0.0.0 in 2 hops
*Mar 11 03:50:30.335:      3.0.0.0/8 via 0.0.0.0 in 1 hops
*Mar 11 03:50:30.335:      10.1.1.0/24 via 0.0.0.0 in 1 hops
  
R2#show ip route rip
R    1.0.0.0/8 [120/2] via 10.2.2.3, 00:00:25, FastEthernet0/0
R    3.0.0.0/8 [120/1] via 10.2.2.3, 00:00:25, FastEthernet0/0
     10.0.0.0/24 is subnetted, 2 subnets
R       10.1.1.0 [120/1] via 10.2.2.3, 00:00:25, FastEthernet0/0
This entry was posted in RIP v2. Bookmark the permalink.

Comments are closed.