Administrator Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S3048-ON

1071

ipv6 ospf authentication

Configure an IPsec authentication policy for OSPFv3 packets on an IPv6 interface.

Syntax

ipv6 ospf authentication {null | ipsec spi number {MD5 | SHA1} [key-encryption-

type] key}}

Parameters

null Causes an authentication policy configured for the area to not be inherited on the

interface.

ipsec spi number

Security Policy index (SPI) value that identifies an IPsec security policy. The range is from

256 to 4294967295.

MD5 | SHA1

Authentication type: Message Digest 5 (MD5) or Secure Hash Algorithm 1 (SHA-1).

key-encryption-

type

(OPTIONAL) Specifies if the key is encrypted.

Valid values: 0 (key is not encrypted) or 7 (key is encrypted).

key

Text string used in authentication.

For MD5 authentication, the key must be 32 hex digits (non-encrypted) or 64 hex digits

(encrypted).

For SHA-1 authentication, the key must be 40 hex digits (non-encrypted) or 80 hex digits

(encrypted).

Defaults Not configured.

Command Modes INTERFACE

Command History

This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC

Networking OS Command Line Reference Guide.

Version Description

9.12(1.0) Introduced on the S5048F–ON.

9.10(0.1) Introduced on the S6010-ON and S4048T-ON.

9.10(0.0) Introduced on the S3148.

9.10(0.0) Introduced on the S6100-ON.

9.8(2.0) Introduced on the S3100 series.

9.8(1.0) Introduced on the Z9100-ON.

9.8(0.0P5) Introduced on the S4048-ON.

9.8(0.0P2) Introduced on the S3048-ON.

9.2(1.0) Introduced on the Z9500.

9.1.(0.0) Introduced on S4810 and Z9000.

8.4.2.0 Introduced on the E-Series.

8.3.19.0 Introduced on the S4820T.

Usage Information

Before you enable IPsec authentication on an OSPFv3 interface, first enable IPv6 unicast routing globally,

configure an IPv6 address and enable OSPFv3 on the interface, and assign the interface to an area.

An SPI value must be unique to one IPsec security policy (authentication or encryption) on the router. Configure

the same authentication policy (same SPI and key) on each OSPFv3 interface in a link.

To remove an IPsec authentication policy from an interface, enter the no ipv6 ospf authentication spi number

command. To remove null authentication on an interface to allow the interface to inherit the authentication policy

configured for the OSPFv3 area, enter the no ipv6 ospf authentication null command.

1080 Open Shortest Path First (OSPFv2 and OSPFv3)