area <AREA-ID> security
Syntax
area <AREA-ID> security authentication ipsec spi <SPI> [ {md5|sha1} key {hex | ascii} [encrypted] <KEY> ]
no area <AREA-ID> security authentication ipsec spi <SPI> [ {md5|sha1} key {hex | ascii} [encrypted] <KEY> ]
Description
Configure OSPFv3 security parameters. By default, security is not configured.
Parameters
Authentication
-
Configure AH authentication.
Ipsec
-
Use IPSec security.
spi <SPI>
-
Enter a value between 256 and 4294967296 to be used as Security Parameter Index.
md5
-
MD5 authentication; the key should be 16 ASCII characters or 32 hexadecimal digits.
sha1
-
SHA1 authentication; the key should be 20 ASCII characters or 40 hexadecimal digits.
ascii
-
Specify the key in characters.
encrypted
-
Specify that the key is encrypted.
key <KEY>
-
The ASCII or hexadecimal or encrypted value of the authentication key.
Examples
Switch(config# router ospf3
Switch(ospf3)# area backbone security authentication ipsec spi 400 md5 key ascii "abcdefghijklmnop"
Switch(ospf3)# area 0.0.0.1 security authentication ipsec spi 401 md5 key hex "31323334353637383930313233343536"
Switch(ospf3)# area 0.0.0.2 security authentication ipsec spi 402 sha1 key hex "0987654321abcde0987654321abcde0987654321"
Switch(ospf3)# area 0.0.0.3 security authentication ipsec spi 403 sha1 key ascii "0987654321!@#$%^&*()"
Switch(ospf3)# area 0.0.0.5 security authentication ipsec spi 403 sha1 key ascii encrypted "R/8Npx7MjsR1kPbPyyh3PIEVasWO8j9W1T32dg8/gEAENgVnW+28dCnRdNne2eIW"
NOTE:
OSPFv3 IPSec configurations are displayed in
show running-config
only when "include-credentials" is enabled.