RIPv2 Authentication
There are 5 steps to setting up authentication in RIPv2 -
Let's take a look at setting up authentication between router 1 and router 2.
- The first step is to define the key chain using the 'key chain name' command.
- Number the key you are creating. The command to number the key is 'key 1'
- Set the password of the key with the 'key-string 123' command. The key-string has to be the same on each router.
- Enable authentication on the interface with the 'ip rip authentication key-chain name' command. This configures the interface to use the settings defined by the key chain.
- The last step is optional if you want to add MD5 encryption to the configuration. The command to configure MD5 encryption is 'ip rip authentication mode md5' , without this command authentication will be sent in plain text.
Let's take a look at setting up authentication between router 1 and router 2.
Let's connect into router 1 and configure
Now authentication is running between router's 1 and 2. If we issue the 'debug ip rip' command we can see router 1 receiving md5 authentications.
We can see that router 1 received a packet with MD5 authentication, it then received a v2 update from 172.16.21.106 on Serial0/0. This is the update from router 2. If router 2 would not have passed MD5 authentication we would have received an error.