Routing Authentication and Passive Interfaces

This document discusses network infrastructure protection for CCNP SCOR students. It covers protecting the control plane, data plane, and management plane. Specifically, it outlines how to configure routing protocol authentication for RIP, OSPF, and EIGRP to protect the control plane. It also discusses configuring passive interfaces for RIP, OSPF, and EIGRP to control routing updates. The document provides configuration examples for authentication and passive interfaces for each of the routing protocols.

Uploaded by

shimaa ashraf

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

60 views

Routing Authentication and Passive Interfaces

Uploaded by

shimaa ashraf

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 3

2020

Network Infrastructure
Protection
For
CCNP SCOR Students
By
Eng. Abeer Hosni
Network Traffic Architecture
- Control Plane (STP, RIP, OSPF, EIGRP, BGP….)
- Data Plane
- Management Plane (Telnet, SSH, SNMP, HTTP, HTTPS….)

Note:
NFP (Network Foundation Protection) is a set of security tools used to
protect different planes.

Control Plane
1- Routing Protocols Authentication:

- RIP Authentication:
R1(config)#key chain TSHOOT
R1(config-keychain)#key 1
R1(config-keychain-key)#key-string CCNPSCOR
R1(config-keychain-key)#accept-lifetime 00:00:00 1 jan 2020 00:00:00 31
jun 2020
R1(config-keychain-key)#send-lifetime 00:00:00 1 jan 2020 00:00:00 31 jun
2020
R1(config-keychain-key)#int f0/0
R1(config-if)#ip rip authentication key-chain TSHOOT
R1(config-if)#ip rip authentication mode md5

- OSPF Authentication:
R1(config)#int f0/0
R1(config-if)#ip ospf authentication-key CCNPSCOR

Or:
R1(config-if)#ip ospf authentication message-digest
R1(config-if)#ip ospf message-digest-key 1 md5 CCNPSCOR

R1(config)#router ospf 1
R1(config-router)#area 0 authentication
R1(config-router)#area 0 authentication message-digest

For IOS XE Release 3S:

R1(config)#key chain TSHOOT
R1(config-keychain)#key 1
R1(config-keychain-key)#key-string CCNPSCOR
R1(config-keychain-key)# cryptographic-algorithm hmac-sha-256
R1(config-keychain-key)#accept-lifetime 00:00:00 1 jan 2020 infinite
R1(config-keychain-key)#send-lifetime 00:00:00 1 jan 2020 infinite
R1(config-keychain-key)#int g0/0
R1(config-if)#ip ospf authentication key-chain TSHOOT

- EIGRP Authentication:
R1(config)#key chain TSHOOT
R1(config-keychain)#key 1
R1(config-keychain-key)#key-string CCNPSCOR
R1(config-keychain-key)#accept-lifetime 00:00:00 1 jan 2020 infinite
R1(config-keychain-key)#send-lifetime 00:00:00 1 jan 2020 infinite
R1(config-keychain-key)#int f0/0
R1(config-if)#ip authentication key-chain eigrp 1 TSHOOT
R1(config-if)#ip authentication mode eigrp 1 md5

2- Passive Interfaces:
- RIP Passive Interface:
R1(config)#router rip
R1(config-router)#passive-interface f0/0
R1(config-router)#passive-interface default

- OSPF Passive Interface:

R1(config)#router ospf 1
R1(config-router)#passive-interface f0/0
R1(config-router)#passive-interface default

- EIGRP Passive Interface:

R1(config)#router eigrp 1
R1(config-router)#passive-interface f0/0
R1(config-router)#passive-interface default

Best Wishes
Abeer :)

CCNA Cheat Sheet
100% (2)
CCNA Cheat Sheet
24 pages
Chapter 2 Answers
No ratings yet
Chapter 2 Answers
11 pages
LAN Security For CCNP SCOR Students by Eng. Abeer Hosni
No ratings yet
LAN Security For CCNP SCOR Students by Eng. Abeer Hosni
3 pages
PT Activity 4.3.2: Configuring OSPF Authentication: Topology Diagram
No ratings yet
PT Activity 4.3.2: Configuring OSPF Authentication: Topology Diagram
4 pages
OSPF Authentication Password and MD5 Explained
No ratings yet
OSPF Authentication Password and MD5 Explained
13 pages
2.3.2.7 Lab - Configuring Basic PPP With Authentication - ILM
No ratings yet
2.3.2.7 Lab - Configuring Basic PPP With Authentication - ILM
26 pages
Ccna Commande 3
No ratings yet
Ccna Commande 3
5 pages
Chapter 8 Lab 8-2, Routing Protocol Authentication Topology: Ccnpv7 Route
No ratings yet
Chapter 8 Lab 8-2, Routing Protocol Authentication Topology: Ccnpv7 Route
12 pages
Autenticacion OSPF md5
No ratings yet
Autenticacion OSPF md5
2 pages
Practical 1 Data
No ratings yet
Practical 1 Data
16 pages
CCNA Sem3 SkillsTestTeil1 Routing
No ratings yet
CCNA Sem3 SkillsTestTeil1 Routing
5 pages
Configuring OSPF: The Cisco OSPF Implementation
No ratings yet
Configuring OSPF: The Cisco OSPF Implementation
34 pages
CCNA 4 Commands
No ratings yet
CCNA 4 Commands
14 pages
Configure Cisco Routers For Syslog Prac 1
No ratings yet
Configure Cisco Routers For Syslog Prac 1
13 pages
Apuntes CCNA Security
No ratings yet
Apuntes CCNA Security
7 pages
Configuring OSPF: Cisco's OSPF Implementation
No ratings yet
Configuring OSPF: Cisco's OSPF Implementation
32 pages
ICND210S04_OSPF
No ratings yet
ICND210S04_OSPF
27 pages
Configuring OSPF: The Cisco OSPF Implementation
No ratings yet
Configuring OSPF: The Cisco OSPF Implementation
32 pages
Routing Protocol Authentication With RIPv2
No ratings yet
Routing Protocol Authentication With RIPv2
4 pages
5.1.5.8 Lab - Configuring OSPFv2 Advanced Features - ILM
75% (12)
5.1.5.8 Lab - Configuring OSPFv2 Advanced Features - ILM
12 pages
OSPF (Open Shortest Path First)
No ratings yet
OSPF (Open Shortest Path First)
5 pages
SIC Project
No ratings yet
SIC Project
87 pages
ccnproute
No ratings yet
ccnproute
53 pages
Cisco R5
No ratings yet
Cisco R5
3 pages
2.4 Configuring and Verifying EIGRP Authentication
No ratings yet
2.4 Configuring and Verifying EIGRP Authentication
34 pages
Day 5 - OSPF - 3
No ratings yet
Day 5 - OSPF - 3
12 pages
6.3.6 Lab - Basic Device Configuration and OSPF Authentication - ILM
No ratings yet
6.3.6 Lab - Basic Device Configuration and OSPF Authentication - ILM
11 pages
SIC Practical1 by STUD - Talks
No ratings yet
SIC Practical1 by STUD - Talks
9 pages
SIC Manual
No ratings yet
SIC Manual
79 pages
Segurança de Acesso-01
No ratings yet
Segurança de Acesso-01
8 pages
6.3.6 Lab - Basic Device Configuration and OSPF Authentication
No ratings yet
6.3.6 Lab - Basic Device Configuration and OSPF Authentication
7 pages
6.+Routing+on+the+ASA+ +OSPF
No ratings yet
6.+Routing+on+the+ASA+ +OSPF
16 pages
OSPF Lab Configuration
No ratings yet
OSPF Lab Configuration
21 pages
Unit 4 OSPF Concepts and Configuration
No ratings yet
Unit 4 OSPF Concepts and Configuration
35 pages
Cursuri Cisco CCNP - Structura Cursurilor
No ratings yet
Cursuri Cisco CCNP - Structura Cursurilor
31 pages
EIGRP
No ratings yet
EIGRP
3 pages
CH10 - Single Area OSPF
No ratings yet
CH10 - Single Area OSPF
12 pages
Intro OSPF
No ratings yet
Intro OSPF
42 pages
Link State Protocol - OSPF
No ratings yet
Link State Protocol - OSPF
22 pages
14 Ospf
No ratings yet
14 Ospf
6 pages
Ospf
No ratings yet
Ospf
759 pages
Single Area OSPF Lab Solutions
No ratings yet
Single Area OSPF Lab Solutions
3 pages
How to Configure OSPF MD5 Authentication
No ratings yet
How to Configure OSPF MD5 Authentication
6 pages
Packet Tracer 10.3.1.2
No ratings yet
Packet Tracer 10.3.1.2
1 page
Configure Juniper OSPF As The IGP
No ratings yet
Configure Juniper OSPF As The IGP
5 pages
DC Core 1
No ratings yet
DC Core 1
44 pages
Configuring OSPF Brandon&Katie
No ratings yet
Configuring OSPF Brandon&Katie
8 pages
71-OSPF-Basic-Config
No ratings yet
71-OSPF-Basic-Config
1 page
Cis 185 CCNP Route Chapter 3: Implementing OSPF: Rick Graziani Cabrillo College Graziani@cabrillo - Edu Spring 2015
No ratings yet
Cis 185 CCNP Route Chapter 3: Implementing OSPF: Rick Graziani Cabrillo College Graziani@cabrillo - Edu Spring 2015
172 pages
Juniper OSPF
No ratings yet
Juniper OSPF
1,030 pages
Configuring and Verifying OSPF Authentication: Implementing A Scalable Multiarea Network OSPF-Based Solution
No ratings yet
Configuring and Verifying OSPF Authentication: Implementing A Scalable Multiarea Network OSPF-Based Solution
17 pages
SIC Journal
No ratings yet
SIC Journal
90 pages
Packet Tracer Skills Based Assessment
No ratings yet
Packet Tracer Skills Based Assessment
15 pages
Router Ospf
No ratings yet
Router Ospf
3 pages
OpenVPN - RouterOS - MikroTik Documentation
No ratings yet
OpenVPN - RouterOS - MikroTik Documentation
1 page
OSPF
No ratings yet
OSPF
2 pages
OSPF Solutions
No ratings yet
OSPF Solutions
7 pages
How To Configure Ospf Routing Protocol and Connect Areas
No ratings yet
How To Configure Ospf Routing Protocol and Connect Areas
9 pages
Iro Cfg-Ospf
No ratings yet
Iro Cfg-Ospf
46 pages
Sic Manual
No ratings yet
Sic Manual
42 pages
SIC PRACTICAL
No ratings yet
SIC PRACTICAL
33 pages
10.advanced OSPF Topics Part I
No ratings yet
10.advanced OSPF Topics Part I
9 pages
CISCO PACKET TRACER LABS: Best practice of configuring or troubleshooting Network
From Everand
CISCO PACKET TRACER LABS: Best practice of configuring or troubleshooting Network
Mulayam Singh
No ratings yet
Co PP
100% (1)
Co PP
3 pages
Storm Control, Port Blocking and Control Plane Rate Limiting For CCNP SCOR Students by Eng. Abeer Hosni
No ratings yet
Storm Control, Port Blocking and Control Plane Rate Limiting For CCNP SCOR Students by Eng. Abeer Hosni
4 pages
1 - Info Security and Cyber Security Fundamentals
No ratings yet
1 - Info Security and Cyber Security Fundamentals
5 pages
Ccie Lab Course Outline
No ratings yet
Ccie Lab Course Outline
5 pages
Icnd1 M01
No ratings yet
Icnd1 M01
91 pages
Answer Key
No ratings yet
Answer Key
28 pages
Networking Basic & Ccna Interview Questions and Answers For Freshers
No ratings yet
Networking Basic & Ccna Interview Questions and Answers For Freshers
7 pages
Industry Cellular Gateway: Feature Sets
No ratings yet
Industry Cellular Gateway: Feature Sets
2 pages
BT-PON BT-511XZ XPON ONU ONT Datasheet
No ratings yet
BT-PON BT-511XZ XPON ONU ONT Datasheet
4 pages
Altai A8 Ein Ac Catalog Eng 210914
No ratings yet
Altai A8 Ein Ac Catalog Eng 210914
2 pages
Chapter 5 v8.0
No ratings yet
Chapter 5 v8.0
107 pages
CS8591 CN
No ratings yet
CS8591 CN
1 page
WS-C3560G-48TS-E Datasheet: Get A Quote
No ratings yet
WS-C3560G-48TS-E Datasheet: Get A Quote
3 pages
RS232 and Ethernet Cable Pinout
No ratings yet
RS232 and Ethernet Cable Pinout
2 pages
Huawei CloudEngine S8700 Series Switches Datasheet
No ratings yet
Huawei CloudEngine S8700 Series Switches Datasheet
30 pages
EDS-510A Series: 7+3g-Port Gigabit Managed Ethernet Switches
No ratings yet
EDS-510A Series: 7+3g-Port Gigabit Managed Ethernet Switches
6 pages
Brksec 3021
No ratings yet
Brksec 3021
131 pages
CH - 04 - 1 MAC Sub Layer-Aloha
No ratings yet
CH - 04 - 1 MAC Sub Layer-Aloha
16 pages
HCNA-HNTD Intermediate Lab Guide V2.1
No ratings yet
HCNA-HNTD Intermediate Lab Guide V2.1
188 pages
134.4919.13 - DM4270 - Datasheet
No ratings yet
134.4919.13 - DM4270 - Datasheet
7 pages
Message Session Relay Protocol (MSRP) : Jonathan Rosenberg Cisco Fellow
No ratings yet
Message Session Relay Protocol (MSRP) : Jonathan Rosenberg Cisco Fellow
23 pages
Node Synchronization
100% (1)
Node Synchronization
4 pages
HCNA 1 - Introduction and Protoctocol Stack Models
No ratings yet
HCNA 1 - Introduction and Protoctocol Stack Models
34 pages
alamat pershn offshor
No ratings yet
alamat pershn offshor
16 pages
Computer Network and Data Communication
No ratings yet
Computer Network and Data Communication
6 pages
UMTS Multi-Carrier Strategy Training-20120329
No ratings yet
UMTS Multi-Carrier Strategy Training-20120329
24 pages
Sostat Redacted
No ratings yet
Sostat Redacted
30 pages
Commerce Bba-CA Semester-4 2023 April Networking-2019-Pattern
No ratings yet
Commerce Bba-CA Semester-4 2023 April Networking-2019-Pattern
2 pages
Work
100% (1)
Work
97 pages
Huawei AirEngine 5761R-11 & Ai
No ratings yet
Huawei AirEngine 5761R-11 & Ai
15 pages
MW - FC3002 - E01 ZXMW NR8250 V2.4.3 Networking Internal DCN Planning Guide 27P
No ratings yet
MW - FC3002 - E01 ZXMW NR8250 V2.4.3 Networking Internal DCN Planning Guide 27P
27 pages

Routing Authentication and Passive Interfaces

Uploaded by

Routing Authentication and Passive Interfaces

Uploaded by

2020

For IOS XE Release 3S:

- OSPF Passive Interface:

- EIGRP Passive Interface:

You might also like