Cisco IOS and IOS XR Configuration Examples: Eigrp Authentication

Thursday, December 29, 2011

Eigrp Authentication

- Eigrp Authentication must be enabled on both routers.

- Key-id and key-string must match on both routers.

These configurations should be added to both Eigrp neighboring routers for Eigrp Authentication :

key chain AUTH

key 10

key-string 123456

interface FastEthernet0/0

ip authentication mode eigrp 1 md5

ip authentication key-chain eigrp 1 AUTH

If we enable Eigrp Authentication one of them, we can get these type of log messages, when “debug eigrp packet” command is active:

* EIGRP: FastEthernet0/0: ignored packet from 192.168.12.2, opcode = 5 (missing authentication)

If the key id and key-string does not match, we can get these type of log messages, when “debug eigrp packet” command is active:

*EIGRP: FastEthernet0/0: ignored packet from 192.168.12.2, opcode = 5 (invalid authentication)

Cisco IOS and IOS XR Configuration Examples