Configuring Cisco’s routing protocol EIGRP

EIGRP

Configuring   Cisco’s   routing   protocol   EIGRP   to   use   authentication   follows   similar
steps as configuring RIP v2 authentication:
1. Enable EIGRP authentication on each interface with the ip authentication mode
eigrp command.
2.   Define the key chain to use under each interface with the ip authentication key-
chain eigrp command.
3.   Create the key chain specified in the previous step:
a. Define a key chain with the key chain command.
b. Identify the number of this authentication key with the key command.
c. Configure the actual authentication key with the key-string command.
Assuming your autonomous system number is 10, you would enable EIGRP authen-
tication on the interfaced FastEthernet 0/0, Serial 0/0, and Serial 0/1 with:

RouterOne#config terminal
Enter configuration commands, one per line.   End with CNTL/Z.
RouterOne(config)#interface FastEthernet 0/0
RouterOne(config-if)#ip authentication mode eigrp 10 md5
RouterOne(config-if)#ip authentication key-chain eigrp 10 Chain1
RouterOne(config-if)#exit
RouterOne(config)#interface Serial 0/0
RouterOne(config-if)#ip authentication mode eigrp 10 md5
RouterOne(config-if)#ip authentication key-chain eigrp 10 Chain1
RouterOne(config-if)#exit
RouterOne(config)#interface Serial 0/1
RouterOne(config-if)#ip authentication mode eigrp 10 md5
RouterOne(config-if)#ip authentication key-chain eigrp 10 Chain1
RouterOne(config-if)#exit
RouterOne(config)#^Z


After your interfaces are configured to use EIGRP authentication, you then define the
key chain and the authentication key. The previous commands specify Chain1 as the
key chain to use for authentication, so the key chain command needs to be used to
create     Chain1.   In   the   following   example,   the   authentication   key   1   is   defined   as
UnguessableKey:


RouterOne#config terminal
Enter configuration commands, one per line.   End with CNTL/Z.
RouterOne(config)#key chain Chain1
RouterOne(config-keychain)#key 1
RouterOne(config-keychain-ke)#key-string UnguessageKey
RouterOne(config-keychain-ke)#^Z

Perform         this   same     configuration           on   all   other     routers     and     interfaces       that   require
EIGRP authentication to complete the setup.

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.