.: Cisco CCNP / BSCI Exam Tutorial: RIP Update Packet Authentication

By:Chris Bryant, CCIE #12933

Category:Home / Computers / Computer Certification

When you earned your CCNA, you thought you learned everything there is to know about RIP. Close, but not quite! There are some additional details you need to know to pass the BSCI exam and get one step closer to the CCNP exam, and one of those involves RIP update packet authentication.



You're familiar with some advantages of using RIPv2 over RIPv1, support for VLSM chief among them. But one advantage that you're not introduced to in your CCNA studies is the ability to configure routing update packet authentication.



You have two options, clear text and MD5. Clear text is just that - a clear text password that is visible by anyone who can pick a packet off the wire. If you're going to go to the trouble of configuring update authentication, you should use MD5. The MD stands for "Message Digest", and this is the algorithm that produces the hash value for the password that will be contained in the update packets.



Not only must the routers agree on the password, they must agree on the authentication method. If one router sends an MD5-hashed password to another router that is configured for clear-text authentication, the update will not be accepted. debug ip rip is a great command for troubleshooting authenticated updates.



R1, R2, and R3 are running RIP over a frame relay cloud. Here is how RIP authentication would be configured on these three routers.



R1#conf t



R1(config)#key chain RIP



< The key chain can have any name. >



R1(config-keychain)#key 1



< Key chains can have multiple keys. Number them carefully when using multiples. >



R1(config-keychain-key)#key-string CISCO



< This is the text string the key will use for authentication. >



R1(config)#int s0



R1(config-if)#ip rip authentication mode text



< The interface will use clear-text mode. >



R1(config-if)#ip rip authentication key-chain RIP



< The interface is using key chain RIP, configured earlier. >



R2#conf t



R2(config)#key chain RIP



R2(config-keychain)#key 1



R2(config-keychain-key)#key-string CISCO



R2(config)#int s0.123



R2(config-subif)#ip rip authentication mode text



R2(config-subif)#ip rip authentication key-chain RIP



R3#conf t



R3(config)#key chain RIP



R3(config-keychain)#key 1



R3(config-keychain-key)#key-string CISCO



R3(config)#int s0.31



R3(config-subif)#ip rip authentication mode text



R3(config-subif)#ip rip authentication key-chain RIP



To use MD5 authentication rather than clear-text, simply replace the word "text" in the ip rip authentication mode command with md5.



Here's what a successfully authentication RIPv2 packet looks like, courtesy of debug ip rip. Clear-text authentication is in effect and the password is "cisco".



3d04h: RIP: received packet with text authentication cisco



3d04h: RIP: received v2 update from 150.1.1.3 on Ethernet0



3d04h: 100.0.0.0/8 via 0.0.0.0 in 1 hops



3d04h: 150.1.2.0/24 via 0.0.0.0 in 1 hops



Here's what it looks like when the remote device is set for MD5 authentication and the local router is set for clear-text. You'll also see this message if the password itself is incorrect.



3d04h: RIP: ignored v2 packet from 150.1.1.3 (invalid authentication)



"Debug ip rip" may be a simple command as compared to the debugs for other protocols. but it's also a very powerful debug. Start using debugs as early as possible in your Cisco studies to learn how router commands really work!

Digg del.icio.us Blink Stumble Spurl Reddit Netscape Furl

Article keywords: Ccnp, bsci, exam, rip, packet, authentication, clear, text, md5, interface, command, pass, free, tutorial, certification

Article Source: http://www.articles32.com

Chris Bryant, CCIE #12933, is the owner of The Bryant Advantage, home of free CCNP and CCNA tutorials, The Ultimate CCNA Study Package, and Ultimate CCNP Study Packages.

For a FREE copy of his latest e-books, “How To Pass The CCNA” and “How To Pass The CCNP”, just visit the website! You can also get FREE CCNA and CCNP exam questions every day! Pass the CCNP exam with The Bryant Advantage!







.: New Computer Certification Articles

1). Cisco CCNP Certification / BCMSN Exam Tutorial: The HSRP MAC Address
To pass the BCMSN exam and earn your CCNP, you've got to know HSRP inside and out! Part of that is knowing how the MAC address of the virtual router is derived, and another part is knowing how to change this address. We'll look at both features in this tutorial. We've got two routers on a segment running HSRP, so first we need to find out what the MAC address of the HSRP virtual router is.

2). Cisco CCNP Certification / BSCI Exam Tutorial: An Introduction To BGP
When you're studying for the BSCI exam on the way to earning your CCNP certification, it's safe to say that BGP is like nothing you’ve studied to this point. BGP is an external routing protocol used primarily by Internet Service Providers (ISPs). Unless you work for an ISP today or in the future, you may have little or no prior exposure to BGP. Understanding BGP is a great addition to your skill set – and you have to know the basics well to pass the BSCI exam.

3). Cisco CCNA Certification Exam Tutorial: Distance Vector Command Review
Part of studying for CCNA exam success is keeping all these new commands straight in your head! And let's face it, there are a lot of commands you need to know in order to pass the CCNA exam and earn that certification. Here's a review of some very important distance vector and static routing commands you need to know, along with their proper usage and console output.

4). Cisco CCNA Certification Exam Tutorial: Keep Your Most Important Appointment
Imagine this. You have an appointment with a client to work on a server or router install. A few minutes before you're scheduled to be there, you decide there's something really good on TV you'd like to watch. Or you decide to go to the gym, or play a game, or do anything else except go see the client. Even if you weren't going to get fired for not showing up, it's certainly unfair to the client.

5). CCNP Certification / BSCI Exam Tutorial: The BGP Neighbor Process
Like TCP, BGP is connection-oriented. An underlying connection between two BGP speakers is established before any routing information is exchanged. This connection takes place on TCP port 179. As with EIGRP and OSPF, keepalive messages are sent out by the BGP speakers in order to keep this relationship alive. Once the connection is established, the BGP speakers exchange routes and synchronize their tables.

6). CCNP Certification / BCMSN Exam Tutorial: Server Load Balancing (SLB)
When you're working on your BCMSN exam on your way to CCNP certification, you'll read at length about how Cisco routers and multilayer switches can work to provide router redundancy - but there's another helpful service, Server Load Balancing, that does the same for servers. While HSRP, VRRP, and CLBP all represent multiple physical routers to hosts as a single virtual router, SLB represents multiple physical servers to hosts as a single virtual server.

7). CCNA / MCSE / CCNP Certification: Making Failure Work For You
Whether you're on the road to the CCNA, CCNP, MCSE, or you're on any other computer certification track, the odds are that sooner or later, you're going to fail an exam. It's happened to almost all of us, yours truly included. What you have to keep in mind in these times is that success is not a straight line. You've probably seen charts showing the growth of an industry or a business -- you know, the ones that go from left to right, and look kind of jagged.


.: Top Computer Certification Articles

1). Cisco CCNP / BSCI Exam Tutorial: OSPF Route Redistribution Review
OSPF route redistribution is an important topic on the BSCI exam, and it's a topic full of details and defaults that you need to know for the exam room and the job. To help you pass the BSCI exam, here's a quick review of some of the OSPF route redistribution basics. To see if a router is an ABR or ASBR, run show ip ospf. This also displays any routes being redistributed into OSPF on this router.

2). Cisco CCNA Certification Exam Tutorial: Variance And Unequal Cost Load Balancing
To pass the CCNA exam, you've got to know how to work with IGRP and EIGRP unequal-cost load balancing. You may not see much IGRP in production networks anymore, but you'll see a lot of EIGRP, and part of fine-tuning your EIGRP network is making sure that all paths are in use while allowing for varying bandwidth rates. Using the variance command is the easy part - it's getting the metric that's the hard part with IGRP.

3). Cisco CCNA Exam Tutorial: Route Summarization
Preparing to pass the CCNA exam and earn this important Cisco certification? Route summarization is just one of the many skills you'll have to master in order to earn your CCNA. Whether it's RIP version 2, OSPF, or EIGRP, the CCNA exam will demand that you can flawlessly configure route summarization. Route summarization isn't just important for the CCNA exam.

4). Cisco CCNA / CCNP Home Lab Setup: How To Configure Reverse Telnet
Occasionally, during your CCNA and CCNP studies, you'll run into a term that just doesn't quite make sense to you. (Okay, more than occasionally!) One such term is "reverse telnet". As a Cisco certification candidate, you know that telnet is simply a protocol that allows you to remotely connect to a networking device such as a router or switch. But.

5). Cisco CCNA / CCNP Home Lab Tutorial: Configuring An Access Server
As your CCNA / CCNP home lab expands, an access server such as the Cisco 2509 or 2511 is one of the best investments you can make. In this article, we'll look at the basic configuration for an access server and discuss how to connect to the other routers and switches in your pod through the AS. Here's part of a configuration from one of my access servers: ip host FRS 2006 100.

6). Cisco CCNA Certification: Defining Broadcast Domains
When you're studying to pass the CCNA exam and earn your certification, you're introduced to a great many terms that are either totally new to you or seem familiar, but you're not quite sure what they are. The term "broadcast domain" falls into the latter category for many CCNA candidates. A broadcast domain is simply the group of end hosts that will receive a broadcast sent out by a given host.

7). Passing Your CCNA and CCNP: Configuring And Troubleshooting Router-On-A-Stick
For CCNA and CCNP candidates, it's hard not to laugh the first time you hear the phrase "router on a stick". Let's face it, that's a pretty silly term. But as those who have passed the CCNA and CCNP exams know, this is a vital exam topic that you must know how to configure and troubleshoot. Basic Cisco theory states that for hosts in different VLANs to communicate, a Layer 3 device must be involved to handle the routing between the VLANs.

.: Main Menu


Home
Top Articles
Top Authors
Submit Articles
Bookmark
Contact Us

.: Article Categories

Accounting
Beauty
Business
Career
Cars and Trucks
Computers
  ·  Computer Certification
  ·  Data Recovery
  ·  Databases
  ·  E-Learning
  ·  Hardware
  ·  Information Technology
  ·  Intra-net
  ·  Networks
  ·  Operating Systems
  ·  Programming
  ·  Security
  ·  Software
Culture and Society
Ecology
Environment
Family
Finance
Fitness
Food and Drink
Free Tools and Resources
Health
Hobbies
Home
Humor
Inspirational/Motivational
Internet
Internet Marketing
Legal
Marketing
Music
Others
Personal Development
Pets and Animals
Politics
Psychology
Publishing
Recreation and Leisure
Relationships
Religion and Spirituality
Science
Speaking
Technology
Writing

Page loaded in 0.254 seconds.