Reference Guide
Virtual Router Redundancy Protocol (VRRP) | 1035
Configure VRRP Authentication
Simple authentication of VRRP packets ensures that only trusted routers participate in VRRP processes.
When authentication is enabled, FTOS includes the password in its VRRP transmission, and the receiving
router uses that password to verify the transmission.
Configure simple authentication with the following command in the VRRP mode:
Figure 54-382. Command Example: authentication-type
Figure 54-383. Command Example: show config in VRID mode with a Simple Password
Configured
Disable Preempt
The preempt command is enabled by default, and it forces the system to change the MASTER router if
another router with a higher priority comes online.
Note: All virtual routers in the VRRP group must be configured the same: authentication must be enabled
with the same password or authentication is disabled.
Task Command Syntax Command Mode
Configure a simple text password.
authentication-type simple
[encryption-type] password
Parameters:
encryption-type: 0 indicates unencrypted; 7
indicates encrypted
password: plain text
INTERFACE-VRID
FTOS(conf-if-gi-1/1-vrid-111)#authentication-type ?
FTOS(conf-if-gi-1/1-vrid-111)#authentication-type simple 7 force10
Password
Encryption type
(encrypted)
FTOS(conf-if-gi-1/1-vrid-111)#show conf
!
vrrp-group 111
authentication-type simple 7 387a7f2df5969da4
priority 255
virtual-address 10.10.10.1
virtual-address 10.10.10.2
virtual-address 10.10.10.3
virtual-address 10.10.10.10
FTOS(conf-if-gi-1/1-vrid-111)#
Encrypted password