Displaying the authentication string – Brocade Virtual ADX Switch and Router Guide (Supporting ADX v03.1.00) User Manual

Page 250

Advertising
background image

236

Brocade Virtual ADX Switch and Router Guide

53-1003246-01

Configuring BGP4 neighbors

8

The BGP4 configuration commands appear in the following format as a result of the show ip bgp
configuration command.

.

In this output, the software has converted the commands that specify an authentication string into
the new syntax (described below), and has encrypted display of the authentication strings.

Syntax: [no] neighbor ip-addr password string

The ip-addr specifies the IP address of a neighbor.

password string specifies an MD5 password for securing sessions between the device and its
neighbor. You can enter a string up to 80 characters long. The string can contain any alphanumeric
characters and spaces if the words in the password are placed inside quotes.

The system creates an MD5 hash of the password and use it for securing sessions between the
device and its neighbors. To display the configuration, the system uses a 2-way encoding scheme to
be able to retrieve the original password that was entered.

By default, password is encrypted. If you want password to be in clear text, insert a 0 between
password and string.

Virtual ADX(config-bgp-router)# neighbor 209.157.22.26 password marmalade

The system adds an encryption code followed by the encrypted text of the original password. For
example, the following portion of the code has the encrypted code “2”.

password 2 $IUA2PWc9LW9VIW9zVQ=="

To configure non-encrypted password, insert a 0 between password and string as shown in the
example below:

Virtual ADX (config-bgp-router)# neighbor 209.157.22.26 password 0 marmalade

One of the following may be displayed:

0 = the password is not encrypted and is in clear text

1 = the password uses proprietary simple cryptographic 2-way algorithm.

2 = the password uses proprietary base64 cryptographic 2-way algorithm.

Displaying the authentication string

To display the authentication string, enter the following commands.

Virtual ADX(config)# enable password-display

Virtual ADX(config)# show ip bgp neighbors

The enable password-display command enables display of the authentication string, but only in the
output of the show ip bgp neighbors command. String display is still encrypted in the startup
configuration file and running configuration.

Virtual ADX(config-bgp-router)# show ip bgp config

Current BGP configuration:

router bgp

local-as 2

neighbor ip-address

neighbor ip-address password 2 $b24tbw==

neighbor 10.10.200.102 remote-as 1

neighbor 10.10.200.102 password 2 $on-o

Advertising
Popular Brands
Popular manuals