[Vyatta-users] Ospf md5 authenication problems cisco/quagga and vyatta

Thu, 13 Dec 2007 14:07:15 -0800 

Hello I've recently started to  deploy  vyatta into our network in hopes of 
replacing our quagga routers. Right now in our area 0 we have cisco + quagga 
using md5 hash for  authenication, and working  just great.

My 1st 2  vyatta  routers aren't working out as planned,  but as far as I can 
tell the cfg looks rights but both quagga and cisco are refering that type 1 is 
 being sent which was validate with a quick  tcpdum -i eth0  dst host 224.0.0.5 
and a  "debug ip ospf adj " on the cisco.

16:57:23.254672 IP (tos 0x0, ttl  64, id 47558, offset 0, flags [none], proto: 
OSPF (89), length: 68) 192.168.1.35 > OSPF-ALL.MCAST.NET: OSPFv2, Hello, 
length: 48
        Router-ID: 192.168.1.35, Backbone Area, Authentication Type: unknown 
(1)[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@"
        Options: [External]
          Hello Timer: 10s, Dead Timer 20s, Mask: 255.255.255.0, Priority: 5
          Designated Router 192.168.1.35, Backup Designated Router 192.168.1.34
          Neighbor List:
            192.168.1.34

Can somebody look this cfg over and give me some insight on how to get the  
authenication to toggle from clear-text to md5?


 protocols {
        ospf4 {
            router-id: 192.168.1.34
            rfc1583-compatibility: false
            ip-router-alert: false
            area 0.0.0.0 {
                area-type: "normal"
                interface eth0 {
                    link-type: "broadcast"
                    address 192.168.1.34 {
                        priority: 128
                        hello-interval: 10
                        router-dead-interval: 20
                        interface-cost: 1
                        retransmit-interval: 5
                        transit-delay: 1
                        authentication {
                            simple-password: ""
                            md5 5 {
                                password: "1power2"
                                start-time: ""
                                end-time: ""
                                max-time-drift: 3600
                            }


cisco config  for reference;

bkbne001#sh run int vlan 50
Building configuration...

Current configuration : 303 bytes
!
interface Vlan50
 description AREA0 bkbne internal
 ip address 192.168.1.2 255.255.255.0
 no ip redirects
 no ip unreachables
 ip accounting access-violations
 ip ospf message-digest-key 5 md5 7 08705C411E1C1745
 ip ospf cost 10
 ip ospf dead-interval 20
 ip ospf priority 5
 no cdp enable


and here's a  debug output  with the 2 vyatta routers ;



OSPF adjacency events debugging is on
bkbne-001#term mon
bkbne-001#
Dec 13 16:52:19.057 est: OSPF: Rcv pkt from 192.168.1.35, Vlan50 : Mismatch 
Authentication type. Input packet specified type 1, we use type 2
Dec 13 16:52:23.309 est: OSPF: Rcv pkt from 192.168.1.34, Vlan50 : Mismatch 
Authentication type. Input packet specified type 1, we use type 2


Here's quagga log ;

[EMAIL PROTECTED]:/var/log/quagga$ su
Password:
zebra01:/var/log/quagga# tail quagga.log
2007/12/13 16:53:57 warnings: OSPF: interface eth0:192.168.1.6: auth-type 
mismatch, local 2, rcvd 1
2007/12/13 16:54:03 warnings: OSPF: interface eth0:192.168.1.6: auth-type 
mismatch, local 2, rcvd 1
2

_______________________________________________
Vyatta-users mailing list
Vyatta-users@mailman.vyatta.com
http://mailman.vyatta.com/mailman/listinfo/vyatta-users

Reply via email to