OSPF认证

在OSPF进程中配置某个区域认证,在这个区域的所有接口都生效;在接口下配置认证,只在这个接口下生效,这是一个快速配置多个接口的方法,若两者都有,接口下优先。(见附1)

两台建立好邻居关系的路由器

R1#show ip ospf neighbor

Neighbor ID     Pri   State           Dead Time   Address         Interface

22.2.2.2          1   FULL/DR         00:00:05    12.1.1.2        FastEthernet0/0

在R1上配置认证,R2上没配,邻居关系会断开

R1#show ip ospf neighbor 无显示

R1#show ip ospf interface f0/0

FastEthernet0/0 is up, line protocol is up

Internet Address 12.1.1.1/24, Area 0

Process ID 1, Router ID 1.1.1.1, Network Type BROADCAST, Cost: 1

Transmit Delay is 1 sec, State DR, Priority 1

Designated Router (ID) 1.1.1.1, Interface address 12.1.1.1

No backup designated router on this network

Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5

oob-resync timeout 40

Hello due in 00:00:02

Supports Link-local Signaling (LLS)

Index 3/3, flood queue length 0

Next 0x0(0)/0x0(0)

Last flood scan length is 1, maximum is 1

Last flood scan time is 0 msec, maximum is 0 msec

Neighbor Count is 0, Adjacent neighbor count is 0

Suppress hello for 0 neighbor(s)

Message digest authentication enabled

Youngest key id is 1

R1显示指定路由器是自己。没有备份路由器,已显示认证信息,开启认证,密钥为1

R2#show ip ospf interface f0/0

FastEthernet0/0 is up, line protocol is up

Internet Address 12.1.1.2/24, Area 0

Process ID 2, Router ID 22.2.2.2, Network Type BROADCAST, Cost: 1

Transmit Delay is 1 sec, State DR, Priority 1

Designated Router (ID) 22.2.2.2, Interface address 12.1.1.2

No backup designated router on this network

Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5

oob-resync timeout 40

Hello due in 00:00:00

Supports Link-local Signaling (LLS)

Index 2/2, flood queue length 0

Next 0x0(0)/0x0(0)

Last flood scan length is 1, maximum is 1

Last flood scan time is 0 msec, maximum is 4 msec

Neighbor Count is 0, Adjacent neighbor count is 0

Suppress hello for 0 neighbor(s)

Message digest authentication enabled

No key configured, using default key id 0

R2显示指定路由器是自己。没有备份路由器,已显示认证信息,开启认证,密钥为0(空密码)

在R2上配置密钥后

R2(config-if)#ip ospf message-digest-key 1 md5 cisco

邻居关系重新建立

R1#show ip ospf neighbor

Neighbor ID     Pri   State           Dead Time   Address         Interface

22.2.2.2          1   FULL/DR         00:00:37    12.1.1.2        FastEthernet0/0

R1#

R1#show ip ospf interface f0/0

FastEthernet0/0 is up, line protocol is up

Internet Address 12.1.1.1/24, Area 0

Process ID 1, Router ID 1.1.1.1, Network Type BROADCAST, Cost: 1

Transmit Delay is 1 sec, State BDR, Priority 1

Designated Router (ID) 22.2.2.2, Interface address 12.1.1.2

Backup Designated router (ID) 1.1.1.1, Interface address 12.1.1.1

Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5

oob-resync timeout 40

Hello due in 00:00:08

Supports Link-local Signaling (LLS)

Index 3/3, flood queue length 0

Next 0x0(0)/0x0(0)

Last flood scan length is 1, maximum is 1

Last flood scan time is 4 msec, maximum is 4 msec

Neighbor Count is 1, Adjacent neighbor count is 1

Adjacent with neighbor 22.2.2.2  (Designated Router)

Suppress hello for 0 neighbor(s)

Message digest authentication enabled

Youngest key id is 1

R1#

R2#show ip ospf neighbor

Neighbor ID     Pri   State           Dead Time   Address         Interface

1.1.1.1           1   FULL/BDR        00:00:36    12.1.1.1        FastEthernet0/0

3.3.3.3           0   FULL/  -           -        23.1.1.3        OSPF_VL0

3.3.3.3           0   FULL/  -        00:00:36    23.1.1.3        Serial1/0.23

R2#

R2#show ip ospf interface f0/0

FastEthernet0/0 is up, line protocol is up

Internet Address 12.1.1.2/24, Area 0

Process ID 2, Router ID 22.2.2.2, Network Type BROADCAST, Cost: 1

Transmit Delay is 1 sec, State DR, Priority 1

Designated Router (ID) 22.2.2.2, Interface address 12.1.1.2

Backup Designated router (ID) 1.1.1.1, Interface address 12.1.1.1

Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5

oob-resync timeout 40

Hello due in 00:00:03

Supports Link-local Signaling (LLS)

Index 2/2, flood queue length 0

Next 0x0(0)/0x0(0)

Last flood scan length is 1, maximum is 1

Last flood scan time is 0 msec, maximum is 4 msec

Neighbor Count is 1, Adjacent neighbor count is 1

Adjacent with neighbor 1.1.1.1  (Backup Designated Router)

Suppress hello for 0 neighbor(s)

Message digest authentication enabled

Youngest key id is 1

疑问:为何建立邻接关系后的DR还是R2?

附一段debug信息,设计DR选举,邻居建立。(R1已开启,R2开启认证后)

R1#debug ip ospf events

R1#debug ip ospf adj

R1#debug ip ospf packet

这三条debug命令区别

debug ip ospf packet

调试ip ospf 数据包。输出的只是收到的包的信息,不涉及发送的包,只列出包头的各字段,并没有解读,不涉及其他信息,一般不用打开。

debug ip ospf events

调试ospf事件,显示发送,接受hello(已解读),邻居改变事件,DR选取,

显示建立邻接关系的过程,比debug ip ospf adj,多了显示 发送接收hello数据包

debug ip ospf adj

调试OSPF邻接信息

显示邻接关系的建立过程。比debug ip ospf events 更加简洁,只显示邻接建立。

显示,发送认证密钥的情况(每隔10S,hello包),如果(收到的数据包)密钥不匹配 ,会提示;

没有配置认证的话,无输出。一般只用这个就可以了。

R1#

//R2还未配置认证密钥时,R1每隔10秒发送一次hello包,企图建立邻居关系,hello包中包含自己已配置的密钥。(仅在f0/0s上配置,f1/0未配置)

*Mar  1 00:41:52.223: OSPF: Send hello to 224.0.0.5 area 0 on FastEthernet1/0 from 10.1.1.1

*Mar  1 00:41:52.307: OSPF: Send with youngest Key 1

*Mar  1 00:41:52.307: OSPF: Send hello to 224.0.0.5 area 0 on FastEthernet0/0 from 12.1.1.1

R1#

//R1收到Hello包,发现认证密钥并不匹配(R1配了密钥,R2还没配)

*Mar  1 00:41:54.451: OSPF: Rcv pkt from 12.1.1.2, FastEthernet0/0 : Mismatch Authentication Key - No message digest key 0 on interface

R1#

R1#

*Mar  1 00:42:02.227: OSPF: Send hello to 224.0.0.5 area 0 on FastEthernet1/0 from 10.1.1.1

*Mar  1 00:42:02.311: OSPF: Send with youngest Key 1

*Mar  1 00:42:02.311: OSPF: Send hello to 224.0.0.5 area 0 on FastEthernet0/0 from 12.1.1.1

*Mar  1 00:42:02.367: OSPF: rcv. v:2 t:1 l:48 rid:22.2.2.2

aid:0.0.0.0 chk:0 aut:2 keyid:1 seq:0x3C7ECE1C from FastEthernet0/0

*Mar  1 00:42:02.371: OSPF: Rcv hello from 22.2.2.2 area 0 from FastEthernet0/0 12.1.1.2

*Mar  1 00:42:02.375: OSPF: 2 Way Communication to 22.2.2.2 on FastEthernet0/0, state 2WAY

*Mar  1 00:42:02.379: OSPF: Neighbor change Event on interface FastEthernet0/0

*Mar  1 00:42:02.379: OSPF: DR/BDR election on FastEthernet0/0

*Mar  1 00:42:02.383: OSPF: Elect BDR 0.0.0.0

*Mar  1 00:42:02.383: OSPF: Elect DR 22.2.2.2

*Mar  1 00:42:02.387: OSPF: Elect BDR 1.1.1.1

*Mar  1 00:42:02.387: OSPF: Elect DR 22.2.2.2

*Mar  1 00:42:02.391:        DR: 22.2.2.2 (Id)   BDR: 1.1.1.1 (Id)

*Mar  1 00:42:02.391: OSPF: Send DBD to 22.2.2.2 on FastEthernet0/0 seq 0x122C opt 0x52 flag 0x7 len 32

*Mar  1 00:42:02.395: OSPF: Send with youngest Key 1

*Mar  1 00:42:02.395: OSPF: Set FastEthernet0/0 flush timer

*Mar  1 00:42:02.395: OSPF: Remember old DR 1.1.1.1 (id)

*Mar  1 00:42:02.399: OSPF: Neighbor change Event on interface FastEthernet0/0

*Mar  1 00:42:02.399: OSPF: DR/BDR election on FastEthernet0/0

*Mar  1 00:42:02.403: OSPF: Elect BDR 1.1.1.1

*Mar  1 00:42:02.403: OSPF: Elect DR 22.2.2.2

*Mar  1 00:42:02.407:        DR: 22.2.2.2 (Id)   BDR: 1.1.1.1 (Id)

*Mar  1 00:42:02.407: OSPF: Send immediate hello to nbr 22.2.2.2, src address 12.1.1.2, on FastEthernet0/0

*Mar  1 00:42:02.411: OSPF: Send with youngest Key 1

*Mar  1 00:42:02.411: OSPF: Send hello to 12.1.1.2 area 0 on FastEthernet0/0 from 12.1.1.1

*Mar  1 00:42:02.411: OSPF: End of hello processing

*Mar  1 00:42:02.431: OSPF: rcv. v:2 t:2 l:32 rid:22.2.2.2

aid:0.0.0.0 chk:0 aut:2 keyid:1 seq:0x3C7ECE1C from FastEthernet0/0

*Mar  1 00:42:02.439: OSPF: Rcv DBD from 22.2.2.2 on FastEthernet0/0 seq 0x2460 opt 0x52 flag 0x7 len 32  mtu 1500 state EXSTART

*Mar  1 00:42:02.443: OSPF: NBR Negotiation Done. We are the SLAVE

*Mar  1 00:42:02.443: OSPF: Send DBD to 22.2.2.2 on FastEthernet0/0 seq 0x2460 opt 0x52 flag 0x2 len 232

*Mar  1 00:42:02.443: OSPF: Send with youngest Key 1

*Mar  1 00:42:02.451: OSPF: rcv. v:2 t:2 l:212 rid:22.2.2.2

aid:0.0.0.0 chk:0 aut:2 keyid:1 seq:0x3C7ECE1C from FastEthernet0/0

*Mar  1 00:42:02.455: OSPF: Rcv DBD from 22.2.2.2 on FastEthernet0/0 seq 0x2461 opt 0x52 flag 0x3 len 212  mtu 1500 state EXCHANGE

*Mar  1 00:42:02.459: OSPF: Send DBD to 22.2.2.2 on FastEthernet0/0 seq 0x2461 opt 0x52 flag 0x0 len 32

*Mar  1 00:42:02.463: OSPF: Send with youngest Key 1

*Mar  1 00:42:02.495: OSPF: rcv. v:2 t:2 l:32 rid:22.2.2.2

aid:0.0.0.0 chk:0 aut:2 keyid:1 seq:0x3C7ECE1C from FastEthernet0/0

*Mar  1 00:42:02.503: OSPF: Rcv DBD from 22.2.2.2 on FastEthernet0/0 seq 0x2462 opt 0x52 flag 0x1 len 32  mtu 1500 state EXCHANGE

*Mar  1 00:42:02.503: OSPF: Exchange Done with 22.2.2.2 on FastEthernet0/0

*Mar  1 00:42:02.503: OSPF: Send LS REQ to 22.2.2.2 length 12 LSA count 1

*Mar  1 00:42:02.503: OSPF: Send with youngest Key 1

*Mar  1 00:42:02.503: OSPF: Send DBD to 22.2.2.2 on FastEthernet0/0 seq 0x2462 opt 0x52 flag 0x0 len 32

*Mar  1 00:42:02.503: OSPF: Send with youngest Key 1

*Mar  1 00:42:02.507: OSPF: rcv. v:2 t:3 l:48 rid:22.2.2.2

aid:0.0.0.0 chk:0 aut:2 keyid:1 seq:0x3C7ECE1C from FastEthernet0/0

*Mar  1 00:42:02.515: OSPF: Rcv LS REQ from 22.2.2.2 on FastEthernet0/0 length 48 LSA count 2

*Mar  1 00:42:02.519: OSPF: Send with youngest Key 1

*Mar  1 00:42:02.519: OSPF: Send UPD to 12.1.1.2 on FastEthernet0/0 length 96 LSA count 2

*Mar  1 00:42:02.559: OSPF: rcv. v:2 t:4 l:88 rid:22.2.2.2

aid:0.0.0.0 chk:0 aut:2 keyid:1 seq:0x3C7ECE1C from FastEthernet0/0

*Mar  1 00:42:02.563: OSPF: rcv. v:2 t:4 l:60 rid:22.2.2.2

aid:0.0.0.0 chk:0 aut:2 keyid:1 seq:0x3C7ECE1C from FastEthernet0/0

*Mar  1 00:42:02.567: OSPF: Rcv LS UPD from 22.2.2.2 on FastEthernet0/0 length 88 LSA count 1

*Mar  1 00:42:02.571: OSPF: Synchronized with 22.2.2.2 on FastEthernet0/0, state FULL

*Mar  1 00:42:02.575: %OSPF-5-ADJCHG: Process 1, Nbr 22.2.2.2 on FastEthernet0/0 from LOADING to FULL, Loading Done

*Mar  1 00:42:02.579: OSPF: Rcv LS UPD from 22.2.2.2 on FastEthernet0/0 length 60 LSA count 1

*Mar  1 00:42:02.899: OSPF: Reset old DR on FastEthernet0/0

*Mar  1 00:42:02.903: OSPF: Send with youngest Key 1

*Mar  1 00:42:02.903: OSPF: Build router LSA for area 0, router ID 1.1.1.1, seq 0x80000008

*Mar  1 00:42:02.963: OSPF: rcv. v:2 t:4 l:88 rid:22.2.2.2

aid:0.0.0.0 chk:0 aut:2 keyid:1 seq:0x3C7ECE1D from FastEthernet0/0

*Mar  1 00:42:02.971: OSPF: Rcv LS UPD from 22.2.2.2 on FastEthernet0/0 length 88 LSA count 1

*Mar  1 00:42:04.427: OSPF: rcv. v:2 t:1 l:48 rid:22.2.2.2

aid:0.0.0.0 chk:0 aut:2 keyid:1 seq:0x3C7ECE1E from FastEthernet0/0

*Mar  1 00:42:04.431: OSPF: Rcv hello from 22.2.2.2 area 0 from FastEthernet0/0 12.1.1.2

*Mar  1 00:42:04.435: OSPF: Neighbor change Event on interface FastEthernet0/0

*Mar  1 00:42:04.439: OSPF: DR/BDR election on FastEthernet0/0

*Mar  1 00:42:04.439: OSPF: Elect BDR 1.1.1.1

*Mar  1 00:42:04.439: OSPF: Elect DR 22.2.2.2

*Mar  1 00:42:04.443:        DR: 22.2.2.2 (Id)   BDR: 1.1.1.1 (Id)

*Mar  1 00:42:04.447: OSPF: End of hello processing

*Mar  1 00:42:05.035: OSPF: rcv. v:2 t:5 l:84 rid:22.2.2.2

aid:0.0.0.0 chk:0 aut:2 keyid:1 seq:0x3C7ECE1F from FastEthernet0/0

*Mar  1 00:42:05.079: OSPF: Send with youngest Key 1

*Mar  1 00:42:07.531: OSPF: rcv. v:2 t:4 l:60 rid:22.2.2.2

aid:0.0.0.0 chk:0 aut:2 keyid:1 seq:0x3C7ECE21 from FastEthernet0/0

*Mar  1 00:42:07.539: OSPF: Rcv LS UPD from 22.2.2.2 on FastEthernet0/0 length 60 LSA count 1

*Mar  1 00:42:10.043: OSPF: Send with youngest Key 1

R1#

R1#

*Mar  1 00:42:12.231: OSPF: Send hello to 224.0.0.5 area 0 on FastEthernet1/0 from 10.1.1.1

*Mar  1 00:42:12.315: OSPF: Send with youngest Key 1

*Mar  1 00:42:12.315: OSPF: Send hello to 224.0.0.5 area 0 on FastEthernet0/0 from 12.1.1.1

R1#

*Mar  1 00:42:14.443: OSPF: rcv. v:2 t:1 l:48 rid:22.2.2.2

aid:0.0.0.0 chk:0 aut:2 keyid:1 seq:0x3C7ECE28 from FastEthernet0/0

*Mar  1 00:42:14.447: OSPF: Rcv hello from 22.2.2.2 area 0 from FastEthernet0/0 12.1.1.2

*Mar  1 00:42:14.451: OSPF: End of hello processing

附一

根据之前的实验,在R1,R2的f0/0下配置了认证,现在再在ospf进程下进行配置,之前在R2 f0/0上的配置并没有变化。在OSPF_VL0 接口下,显示空密码认证,正是刚在ospf下进行的配置,虚链路是area 0的接口,所以会在这个接口生效。

R2(config)#router ospf 2

R2(config-router)#area 0 authentication message-digest

R2(config-router)#exit

R2(config)#end

R2#show ip ospf interface

FastEthernet0/0 is up, line protocol is up

Internet Address 12.1.1.2/24, Area 0

Process ID 2, Router ID 22.2.2.2, Network Type BROADCAST, Cost: 1

Transmit Delay is 1 sec, State BDR, Priority 1

Designated Router (ID) 1.1.1.1, Interface address 12.1.1.1

Backup Designated router (ID) 22.2.2.2, Interface address 12.1.1.2

Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5

oob-resync timeout 40

Hello due in 00:00:01

Supports Link-local Signaling (LLS)

Index 2/2, flood queue length 0

Next 0x0(0)/0x0(0)

Last flood scan length is 2, maximum is 2

Last flood scan time is 0 msec, maximum is 4 msec

Neighbor Count is 1, Adjacent neighbor count is 1

Adjacent with neighbor 1.1.1.1  (Designated Router)

Suppress hello for 0 neighbor(s)

Message digest authentication enabled

Youngest key id is 1

Loopback22 is up, line protocol is up

Internet Address 22.2.2.2/24, Area 0

Process ID 2, Router ID 22.2.2.2, Network Type LOOPBACK, Cost: 1

Loopback interface is treated as a stub Host

OSPF_VL0 is up, line protocol is up

Internet Address 23.1.1.2/24, Area 0

Process ID 2, Router ID 22.2.2.2, Network Type VIRTUAL_LINK, Cost: 64

Configured as demand circuit.

Run as demand circuit.

DoNotAge LSA allowed.

Transmit Delay is 1 sec, State POINT_TO_POINT,

Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5

oob-resync timeout 40

Hello due in 00:00:01

Supports Link-local Signaling (LLS)

Index 1/1, flood queue length 0

Next 0x0(0)/0x0(0)

Last flood scan length is 1, maximum is 1

Last flood scan time is 0 msec, maximum is 4 msec

Neighbor Count is 1, Adjacent neighbor count is 1

Adjacent with neighbor 3.3.3.3  (Hello suppressed)

Suppress hello for 1 neighbor(s)

Message digest authentication enabled

No key configured, using default key id 0

Serial1/0.23 is up, line protocol is up

Internet Address 23.1.1.2/24, Area 1

Process ID 2, Router ID 22.2.2.2, Network Type POINT_TO_POINT, Cost: 64

Transmit Delay is 1 sec, State POINT_TO_POINT,

Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5

oob-resync timeout 40

Hello due in 00:00:03

Supports Link-local Signaling (LLS)

Index 1/4, flood queue length 0

Next 0x0(0)/0x0(0)

Last flood scan length is 1, maximum is 2

Last flood scan time is 0 msec, maximum is 4 msec

Neighbor Count is 1, Adjacent neighbor count is 1

Adjacent with neighbor 3.3.3.3

Suppress hello for 0 neighbor(s)

R2#

时间: 2024-10-10 17:46:24

OSPF认证的相关文章

OSPF多区域配置和OSPF认证应用

OSPF认证 ospf认证解决安全隐患,只要通过认证的ospf路由器才能正常建立邻居关系.交互信息 认证模式:不认证null(默认):明文simple认证:MD5认证 OSPF的认证方式 ** 接口认证** [R1-GigabitEthernet0/0/2]ospf authentication-mode simple cipher 123 //进入配置进程的接口配置认证方式为明文 密码123 cipher加密仅表示在查看命令时加密显示,而报文在传输过程中密码是明文显示. [R1-Gigabit

OSPF虚链路配置.示例2

先看一个拓扑图 黄色区域是area0,即骨干区域,如果如图示RT1与RT6之间的链路断了,那么会出现骨干区域被“分裂”的情况,很明显骨干区域是不能被分割开的,出现这种状况的时候可能会影响到整个自制系统的正常运行. OSPF这么一个优秀的协议当然会有处理的办法啦,那就是引入“虚链路”技术了.如果出现上面这样的情况,RT1与RT6仍然可以建立邻居,只要理论上RT1可以有到达RT6的路径就行了,此时RT5会替RT1与RT6 “转交”OSPF的邻居建立消息及路由信息,这样就不会出现区域被分割的状况了.

OSPF相关知识与实例配置

OSPF相关知识与实例配置[基本知识及多区域配置] OSPF(开放式最短路径优先协议)是一个基于链路状态的IGP,相比于RIP有无环路:收敛快:扩展性好等优点,也是现在用的最多的:所以这次实验就针对于OSPF(HCNA)内容进行一个探究: 在说ospf配置前:我们先来了解下ospf LSA的类型: type1 LSA:每个ospf路由器都会产生type1 LSA:描述了对应设备接口的物理接口所连接的链路或接口,并且表明了个链路的状态.开销等参数:(只在区域内泛洪) Type2 LSA:网络LSA

ODR、EIGRP、OSPF、BGP、PPPOE、IPV6

CDP.ODR 全局是cdp run 接口是cdp enable #show cdp neighbors 可以加detail #clear cdp table  清空cdp conf#router odr 开启ODR EIGRP #show ip eigrp neighbors detail 查看邻居详情 #show ip protocol #show ip eigrp interface           查看接口EIGRP详情 conf-router#metric weights 0 K1

Cisco PT模拟实验(14) 路由器OSPF动态路由的配置

Cisco PT模拟实验(14) 路由器OSPF动态路由的配置 实验目的: 掌握OSPF动态路由选择协议的配置方法 掌握路由选择表中的OSPF路由描述 熟悉路由选择和分组转发的原理及过程 实验背景: 公司通过一台三层交换机连到企业网的出口路由器上,路由器再与互联网服务提供商 ISP的另一台路由器连接.现要企业网设备上做适当配置,实现企业网内部主机与外网主机之间的相互通信.为了简化网管的管理维护工作,公司决定采用动态路由配置 -- OSPF协议实现互通. 技术原理: 路由器通过路由选择协议建立了一

Cisco学习笔记 CCNP-OSPF

OSPF 三张表 neighbors topology 也就是LSDB Routing table OSPF 采用层次化架构(this two-level hierarchy consists of the following) -Transit area(backbone or area 0) -Regular areas (non backbone area ) OSPF area Characteristics: minimizes routing table entries locali

ospf实验(1)

1 route id的选举 a 手动配置,通过命令route-id x.x.x.x指定,为最优先: b 如果没有手动指定,那么选取IP地址最高的回环端都作为route-id,即使这个端口并没有参与OSPF进程: c 如果没有回环端口,那么选举IP地址最高的物理接口地址作route-id,即使这个端口没有参与OSPF进程,但是该端口一定要是UP的: 2 show ip ospf interface brief 查看那些接口参与的ospf进程: 3 show ip ospf neighbor 查看o

OSPF的基本原理及配置命令

一.OSPF OSPF基本原理以及邻居关系建立过程OSPF是一种链路状态型路由选择协议.它依靠5种(Hello, DBD, LSR, LSU and LSAck)不同种类的数据包来识别.建立和维护邻居关系.当路由器接收到来自邻居的链路状态信息后,会建立一个链路状态数据库:然后根据该链路状态数据库,采用SPF算法确定到各目的地的最佳路径:最后将最佳路径放到它的路由表中,生成路由表.一.在路由器上配置单域的OSPF1.如下基本配置:(1)配置端口IP地址以RTA路由器的配置为例:RTA(config

OSPF集合

OSPF**认证完整总结** OSPF的认证有确切说是3种,OSPF头里其中认证字段0表示无认证, 1表示明文认证, 2表示MD5认证.明文认证发送密码进行认证,而MD5认证发送的是报文摘要.有关MD5的详细信息,可以参阅RFC1321. ? OSPF的认证可以在链路上进行,也可以在整个区域内进行认证.另外虚链路同样也可以进行认证. 虚链路配置:两个ABR之间ospf进程下,指的是对方router-id 区域是中间穿越区域 area 1(中间穿越区域) virtual-link 3.3.3.3