Users Guide
To remove an IPsec authentication policy from an interface, use the no ipv6 ospf authentication spi
number command.
To remove null authentication on an interface to allow the interface to inherit the authentication policy congured
for the OSPFv3 area, use the no ipv6 ospf authentication null command.
Parameters
null Causes an authentication policy congured for the area to not be inherited on the
interface.
ipsec spi number Security Policy index (SPI) value that identies an IPsec security policy. The range is from
256 to 4294967295.
MD5 | SHA1
Authentication type: Message Digest 5 (MD5) or Secure Hash Algorithm 1 (SHA-1).
key-encryption-
type
(OPTIONAL) Species if the key is encrypted.
Valid values: 0 (key is not encrypted) or 7 (key is encrypted).
key
Text string used in authentication.
For MD5 authentication, the key must be 32 hex digits (non-encrypted) or 64 hex digits
(encrypted).
For SHA-1 authentication, the key must be 40 hex digits (non-encrypted) or 80 hex digits
(encrypted).
Defaults Not congured.
Command Modes INTERFACE
Supported Modes Full—Switch
Command History
Version Description
9.9(0.0) Introduced on the FN IOM.
9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information
Before you enable IPsec authentication on an OSPFv3 interface, rst enable IPv6 unicast routing globally, congure
an IPv6 address and enable OSPFv3 on the interface, and assign the interface to an area.
An SPI value must be unique to one IPsec security policy (authentication or encryption) on the router. Congure
the same authentication policy (same SPI and key) on each OSPFv3 interface in a link.
ipv6 ospf bfd all-neighbors
Establish BFD sessions with all OSPFv3 neighbors on a single interface or use non-default BFD session parameters.
Syntax
ipv6 ospf bfd all-neighbors [disable | [interval interval min_rx min_rx
multiplier value role {active | passive}]]
982 Open Shortest Path First (OSPFv2 and OSPFv3)