22 ip ospf mtu – CANOGA PERKINS 9175 Command Reference User Manual
Page 228
CanogaOS Command Reference
15-19
interface eth-0-11
ip ospf message-digest-key 100 md5 OLD
You change the configuration to the following:
interface eth-0-1
ip ospf message-digest-key 101 md5 NEW
The system assumes its neighbors do not have the new key yet, so it begins a rollover process. It sends
multiple copies of the same packet, each authenticated by different keys. In this example, the system
sends out two copies of the same packet—the first one authenticated by key 100 and the second one
authenticated by key 101.
Rollover allows neighboring routers to continue communication while the network administrator is
updating them with the new key. Rollover stops once the local system finds that all its neighbors know
the new key. The system detects that a neighbor has the new key when it receives packets from the
neighbor authenticated by the new key.
After all neighbors have been updated with the new key, the old key should be removed. In this example,
you would enter the following:
interface eth-0-1
no ip ospf message-digest-key 100
Then, only key 101 is used for authentication on Ethernet interface 1.
We recommend that you not keep more than one key per interface. Every time you add a new key, you
should remove the old key to prevent the local system from continuing to communicate with a hostile
system that knows the old key. Removing the old key also reduces overhead during rollover.
Examples
The following example sets a new key 19 with the password 8ry4222:
interface eth-0-1
ip ospf message-digest-key 10 md5 xvv560qle
ip ospf message-digest-key 19 md5 8ry4222
Related Commands
area authentication
ip ospf authentication
15.22 ip ospf mtu
To set the MTU value when sending Database Descriptor (DBD) packets, use the ip ospf mtu
command in interface configuration mode. To restore a default value, use the no form of this command.
Command Syntax
ip ospf mtu mtu-value
no ip ospf mtu
mtu-value
An MTU value in the range from 576 to 65535.
Default
1500.