Dell S50V Switch User Manual


  Open as PDF
of 1262
 
1136 | Virtual Router Redundancy Protocol (VRRP)
www.dell.com | support.dell.com
Configure VRRP Authentication
Simple authentication of VRRP packets ensures that only trusted routers participate in VRRP processes.
When authentication is enabled, FTOS includes the password in its VRRP transmission, and the receiving
router uses that password to verify the transmission.
Configure simple authentication with the following command in VRRP configuration mode:
Figure 58-9. Command Example: authentication-type simple
Note: Authentication is not available for IPv6 VRRP.
Note: All virtual routers in the VRRP group must be configured the same: authentication must be enabled
with the same password or authentication is disabled.
Task Command Syntax Command Mode
Configure a simple text password.
authentication-type simple [encryption-type]
password
encryption-type:
0 indicates an unencrypted
password in the configuration; 7 indicates an
encrypted password in the configuration.
password: plain text
INTERFACE-VRID
Note: As shown in Figure 58-9, the VRRP authentication password that you configure is displayed in
encrypted form in show running-config (EXEC Privilege) and show config (INTERFACE) command
output. To display the VRRP authentication password (as well as all other FTOS passwords) in clear text
in show command output, you must enter the no service password-encryption (CONFIGURATION)
command. To remove the currently configured VRRP authentication password, enter the no
authentication-type simple [encryption-type] password command.
FTOS(conf-if-gi-1/1-vrid-111)#authentication-type simple 0 force10
FTOS(conf-if-gi-1/1-vrid-111)#show config
!
vrrp-group 111
authentication-type simple 7 387a7f2df5969da4
priority 255
virtual-address 10.10.10.1
virtual-address 10.10.10.2
virtual-address 10.10.10.3
virtual-address 10.10.10.10
FTOS(conf-if-gi-1/1-vrid-111)#no authentication-type simple 0 force10
FTOS(conf-if-gi-1/1-vrid-111)#show config
!
vrrp-group 111
priority 255
virtual-address 10.10.10.1
virtual-address 10.10.10.2
virtual-address 10.10.10.3
virtual-address 10.10.10.10
 previous next