實(shí)例講解RIP的明文驗(yàn)證
作者:佚名
明文認(rèn)證的匹配原則:發(fā)送方發(fā)送最小KEY ID的密鑰;不攜帶K ID號(hào)碼;接受方會(huì)和所有的KEY chain中的密鑰匹配,如果匹配成功,則通過(guò)。下面讓我們通過(guò)實(shí)例來(lái)看一下明文驗(yàn)證步驟。
明文驗(yàn)證步驟如下:
拓?fù)淙鐖D:
1、明文認(rèn)證時(shí),被認(rèn)證方發(fā)送key chian時(shí),發(fā)送最低ID值的key,并且不攜帶ID;認(rèn)證方接收到key后,和自己key chain的全部key進(jìn)行比較,只要有一個(gè)key匹配就通過(guò)對(duì)被認(rèn)證方的認(rèn)證。
2、驗(yàn)證
R1上配置為:
- key chain rip-key
- key 1
- key-string ccxx02
- !
- interface FastEthernet0/0
- ip address 192.168.12.1 255.255.255.0
- ip rip authentication key-chain rip-key
R2上配置為:
- key chain rip-key
- key 1
- key-string ccxx01
- key 2
- key-string ccxx02
- !
- interface FastEthernet0/0
- ip address 192.168.12.2 255.255.255.0
- ip rip authentication key-chain rip-key
3、路由器的路由表結(jié)果
- R1#show ip route
- Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
- D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
- N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
- E1 - OSPF external type 1, E2 - OSPF external type 2
- i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
- ia - IS-IS inter area, * - candidate default, U - per-user static route
- o - ODR, P - periodic downloaded static route
- Gateway of last resort is not set
- C 192.168.12.0/24 is directly connected, FastEthernet0/0
- C 192.168.1.0/24 is directly connected, Loopback0
- R2#show ip route
- Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
- D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
- N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
- E1 - OSPF external type 1, E2 - OSPF external type 2
- i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
- ia - IS-IS inter area, * - candidate default, U - per-user static route
- o - ODR, P - periodic downloaded static route
- Gateway of last resort is not set
- C 192.168.12.0/24 is directly connected, FastEthernet0/0
- R 192.168.1.0/24 [120/1] via 192.168.12.1, 00:00:15, FastEthernet0/0
- C 192.168.2.0/24 is directly connected, Loopback0
明文驗(yàn)證的過(guò)程就為大家介紹完了,希望大家已經(jīng)掌握。
【編輯推薦】
責(zé)任編輯:佚名
來(lái)源:
Cisco技術(shù)
