Brocade Multi-Service IronWare Routing Configuration Guide (Supporting R05.6.00) User Manual

Multi-Service IronWare Routing Configuration Guide

183

53-1003033-02

Configuring OSPF

transmit-delay num

The period of time it takes to transmit Link State Update packets on the interface. The
range is 0 – 3600 seconds. The default is 1 second.

authentication-key string

This parameter allows you to assign different authentication encryption methods on a
port-by-port basis. OSPF supports three methods of authentication for each interface:
none, simple encryption, and base 64 encryption. Only one encryption method can be
active on an interface at a time.
The simple encryption and base 64 encryption methods requires you to configure an
alphanumeric password on an interface. The password can be up to eight characters
long. All OSPF packets transmitted on the interface contain this password. All OSPF
packets received on the interface are checked for this password. If the password is not
present, then the packet is dropped.
By default, the authentication key is encrypted. If you want the authentication key to be
in clear text, insert a 0 between key and string. For example,
Brocade C(config-ospf-router)# area 1 virtual-link 10.0.0.1

authentication-key 0 afternoon

The software adds a prefix to the authentication key string in the configuration. For
example, the following portion of the code has the encrypted code “2”.
area 1 virtual-link 10.12.12.25 authentication-key 2 $on-o

The prefix can be one of the following:

•

0 = the key string is not encrypted and is in clear text

•

1 = the key string uses proprietary simple cryptographic 2-way algorithm

•

2 = the key string uses proprietary base64 cryptographic 2-way algorithm (only for
Brocade NetIron XMR and Brocade MLX series devices)

md5-authentication key
string

The MD5 key is a number from 1 – 255 and identifies the MD5 key that is being used.
This parameter is required to differentiate among multiple keys defined on a router.
When MD5 is enabled, the key-string is an alphanumeric password of up to 16
characters that is later encrypted and included in each OSPF packet transmitted. You
must enter a password in this field when the system is configured to operate with
either simple or MD5 authentication.
By default, the MD5 authentication key is encrypted. If you want the authentication key
to be in clear text, insert a 0 between key and string. For example,
Brocade C(config-ospf-router)# area 1 virtual-link 10.0.0.1

md5-authentication key-id 5 key evening

The software adds a prefix to the authentication key string in the configuration. For
example, the following portion of the code has the encrypted code “2”.
area 1 virtual-link 10.12.12.25 md-5-authentication key-id 5 key 2 $on-o
The prefix can be one of the following:

•

0 = the key string is not encrypted and is in clear text

•

1 = the key string uses proprietary simple cryptographic 2-way algorithm

•

2 = the key string uses proprietary base64 cryptographic 2-way algorithm (only for
Brocade NetIron XMR and Brocade MLX series devices)

md5-authentication wait
time

This parameter determines when a newly configured MD5 authentication key is valid.
This parameter provides a graceful transition from one MD5 key to another without
disturbing the network. All new packets transmitted after the key activation wait time
interval use the newly configured MD5 Key. OSPF packets that contain the old MD5 key
are accepted for up to five minutes after the new MD5 key is in operation.
The range for the key activation wait time is from 0 – 14400 seconds. The default
value is 300 seconds.

Table 0.2: