neighbor authentication-key

OcNOS-SP : Layer 3 Guide : Border Gateway Protocol Command Reference : BGP Commands : neighbor authentication-key

Use this command to enable message digest5 (MD5) authentication on a TCP connection between two BGP peers. Configuring MD5 authentication between two BGP peers, means that each segment sent on the TCP connection between the peers is verified. MD5 authentication must be configured with the same password on both BGP peers; otherwise, the connection between them will not be established.

Use the no parameter with this command to delete the MD5 authentication.

Command Syntax

neighbor (A.B.C.D|X:X::X:X|WORD) authentication-key (0 | 1 |) <WORD>

<WORD> plain text password

neighbor (A.B.C.D|X:X::X:X|WORD) authentication-key <WORD>

<WORD> encrypted password

no neighbor (A.B.C.D|X:X::X:X|WORD) authentication-key <WORD>

<WORD> encrypted password

Parameters

A.B.C.D

Address of the BGP neighbor in an IPv4 format

X:X::X:X

Address of the BGP neighbor in an IPv6 format

WORD

Name of the BGP peer group

Unencrypted password

WORD

Unencrypted password (maximum length 80 characters)

Encrypted password (default)

WORD

Encrypted password (maximum length 162 characters)

Default

Not applicable

Command Mode

Router mode

Applicability

This command was introduced before OcNOS version 1.3.

Example

#configure terminal

(config)#router bgp 11

(config-router)#neighbor 10.10.0.73 authentication-key 0 myPass

(config-router)#no neighbor 10.10.0.73 authentication-key 0xba76ef302e2f20af

For unnumbered peer below configuration is given in BGP unnumbered-mode.

(config)#router bgp 100

(config-router)#bgp unnumbered-mode

(config-router-unnum)#neighbor eth1 authentication-key 0 key1

Last modified date: 10/16/2023