Home   | CCNA Certification  |   CCNP Training   | CompTIA |  Boot Camps  |  Free Tutorials   | MS Vista | About Me

 

The Bryant Advantage Bulldog Blog

Chris Bryant's Facebook Fan Page

Join Me On Twitter For CCNA and CCNP Updates!

Over 500,000 Views On Our Video Training Channel!

Subscribe To My RSS Feed!

Network With Me On Linkedin!

 
  More Testimonials >
Visit my blog for free daily Cisco CCNA and CCNP certification questions, my latest free articles and tutorials, and more!


 

CCNP ROUTE Exam Training:

RIP Version 2 Packet Authentication

By Chris Bryant, CCIE #12933

Take advantage of three free hours of CCNP Video Boot Camp training -- links are at the conclusion of this tutorial!

Thought you learned everything there is to know about RIP in your CCNA studies?

Close, but not quite! There are some additional details you need to know to pass the CCNP ROUTE exam, and one of those involves RIP update packet authentication.

You're familiar with some advantages of using RIPv2 over RIPv1, support for VLSM chief among them. But one advantage that you're not introduced to in your CCNA studies is the ability to configure routing update packet authentication.

You have two options, clear text and MD5. Clear text is just that - a clear text password that is visible by anyone who can pick a packet off the wire. If you're going to go to the trouble of configuring update authentication, you should use MD5.

The MD stands for "Message Digest", and this is the algorithm that produces the hash value for the password that will be contained in the update packets.

Not only must the routers agree on the password, they must agree on the authentication method. If one router sends an MD5-hashed password to another router that is configured for clear-text authentication, the update will not be accepted. debug ip rip is a great command for troubleshooting authenticated updates.

R1, R2, and R3 are running RIP over a frame relay cloud, all on their respective Serial0 interfaces. (R2 and R3 are using subinterfaces - note the prompts.)

Here is how RIP authentication would be configured:

R1(config)#key chain RIP

R1(config-keychain)#key 1

R1(config-keychain-key)#key-string CISCO

R1(config)#int s0

R1(config-if)#ip rip authentication mode text

R1(config-if)#ip rip authentication key-chain RIP



R2(config)#key chain RIP

R2(config-keychain)#key 1

R2(config-keychain-key)#key-string CISCO

R2(config)#int s0.123

R2(config-subif)#ip rip authentication mode text

R2(config-subif)#ip rip authentication key-chain RIP



R3(config)#key chain RIP

R3(config-keychain)#key 1

R3(config-keychain-key)#key-string CISCO

R3(config)#int s0.31

R3(config-subif)#ip rip authentication mode text

R3(config-subif)#ip rip authentication key-chain RIP



To use MD5 authentication rather than clear-text, simply replace the word "text" in the ip rip authentication mode command with md5.

Here's what a successfully authentication RIPv2 packet looks like, courtesy of debug ip rip. Clear-text authentication is in effect and the password is "cisco".

3d04h: RIP: received packet with text authentication cisco

3d04h: RIP: received v2 update from 150.1.1.3 on Ethernet0

3d04h: 100.0.0.0/8 via 0.0.0.0 in 1 hops

3d04h: 150.1.2.0/24 via 0.0.0.0 in 1 hops

You'll also see this message if the password itself is incorrect:

3d04h: RIP: ignored v2 packet from 150.1.1.3 (invalid authentication)

Debug ip rip may be a simple command as compared to the debugs for other protocols. but it's also a very powerful debug. Start using debugs as early as possible in your Cisco studies to learn how router commands really work - in your lab, that is!

Additional CCNP Exam Tutorials and Videos:

CCNP ROUTE Tutorials and Videos

CCNP SWITCH Tutorials and Videos

CCNP TSHOOT Tutorials and Videos

_______________________________________________

Get your CCNP with my CCNP Video Boot Camp DVD Bundle!

Free Worldwide Shipping AND Immediate Video Access!

Over 50 hours of my world-class CCNP Video Boot Camp training, all three of my CCNP Study Guide ebooks AND MP3 files...

... plus immediate online access to every single video!

Here's your access to over three free HOURS of my CCNP Video Boot Camp training.... just click the first two videos in any course to start watching!

 

My CCNP DVDs are just $97 each, and you get immediate online access to all videos on the DVD!

Each page now includes a full outline and one full hour of samples!

CCNP SWITCH DVD

CCNP TSHOOT DVD

CCNP ROUTE DVD

CCNP Video Boot Camp Bundle

Here's a complete course outline for each CCNP DVD - just click to watch the first two lessons of any course for free!

 

 

 

 

______________________________________________________

My CCNP SWITCH, CCNP ROUTE, and CCNP TSHOOT Study Guides Are Here!

Save $50 On My CCNP Study Guide Library --

... And I'll Pay For Priority Mail Shipping!

CCNP SWITCH Study GuideCCNP ROUTE Study GuideCCNP TSHOOT Study Guide

___________________________________________________

 

To your success,

Chris Bryant

CCIE #12933

"The Computer Certification Bulldog"

chris@thebryantadvantage.com

 

 

The Ultimate CCNA Study Package | The Ultimate CCNA Study Guide

Binary Math And Subnetting Mastery

Cisco Rack Rentals

CCNP BSCI Exam Study Package

CCNP BCMSN Exam Study Package

CCNP BCRAN Exam Study Package

CCNP CIT Exam Study Package | CCNP BSCI Exam Study Guide

CCNA CBT Video Boot Camp | CCNP BSCI Video Boot Camp

Cisco Training Tutorials And Cisco Certification Articles

CCNP CBT BCMSN Video Boot Camp | CCNP CBT BCRAN Video Boot Camp

CompTIA Network+ Exam Study Package

CompTIA Security+ Exam Study Package

CompTIA A + Certification Exam Study Package

CCNA Training Store | CCNP Certification Training Store

CompTIA Certification Training Store

Cisco Lab Router And Switch Home Lab Help

Site Map | Home Page | Testimonials

Microsoft Windows Vista Certification Updates And News

The Bryant Advantage Blog | About Chris Bryant, CCIE #12933