Cisco Cisco IOS Software Release 12.4(2)T
MSDP MD5 Password Authentication
Information About MSDP MD5 Password Authentication
2
Cisco IOS Release 12.4(2)T
Information About MSDP MD5 Password Authentication
To configure MSDP MD5 password authentication, you must be familiar with the following concepts:
•
•
How MSDP MD5 Password Authentication Works
Developed in accordance with RFC 2385, the MSDP MD5 password authentication feature is used to
verify each segment sent on the TCP connection between MSDP peers. The ip msdp password peer
command is used to enable MD5 authentication for TCP connections between two MSDP peers. When
MD5 authentication is enabled between two MSDP peers, each segment sent on the TCP connection
between the peers is verified. MD5 authentication must be configured with the same password on both
MSDP peers; otherwise, the connection between them will not be made. Configuring MD5
authentication causes the Cisco IOS software to generate and verify the MD5 digest of every segment
sent on the TCP connection.
verify each segment sent on the TCP connection between MSDP peers. The ip msdp password peer
command is used to enable MD5 authentication for TCP connections between two MSDP peers. When
MD5 authentication is enabled between two MSDP peers, each segment sent on the TCP connection
between the peers is verified. MD5 authentication must be configured with the same password on both
MSDP peers; otherwise, the connection between them will not be made. Configuring MD5
authentication causes the Cisco IOS software to generate and verify the MD5 digest of every segment
sent on the TCP connection.
Benefits of MSDP MD5 Password Authentication
•
Protects MSDP against the threat of spoofed TCP segments being introduced into the TCP
connection stream.
connection stream.
•
Uses the industry-standard MD5 algorithm for improved reliability and security.
How to Configure MSDP MD5 Password Authentication
This section contains the following required configuration task:
•
Configuring MSDP MD5 Password Authentication
This task explains how to configure MSDP MD5 password authentication.
SUMMARY STEPS
1.
enable
2.
configure terminal
3.
ip msdp peer {peer-name | peer-address} [connect-source interface-type interface-number]
[remote-as as-number]
[remote-as as-number]
4.
ip msdp [vrf name] password peer {peer-name | peer-address} [encryption-type] string
5.
end
6.
show ip msdp peer