user manual

ManualsBrandsMotorola ManualsrouterRouter Enterprise Series Routers

211

212

213

214

215

216

217

218

219

220

7-10 Administrator’s Handbook

On a Motorola Netopia

router, every interface will be allowed to have up to two keys. RIP-2 MD5 authentication

can be conﬁgured on the Ethernet LAN (all models), Ethernet WAN models, Connection Proﬁles, and the Default

Proﬁle. Keys can have lifetimes, deﬁned as a start date and time and an end date and time, or inﬁnite.

Key management

Typically, you conﬁgure only one key on a given interface and all of the interfaces that interact with that

interface. RIP updates are sent every 30 seconds. Each RIP packet is authenticated using one key and sent.

When the Motorola Netopia

router receives an authenticated RIP packet from a device, it keeps track of that

device (peer).

The longer it is in use, a single key becomes less secure. Therefore, RFC2082 speciﬁes that an interface must

support at least two keys per interface to allow a transition from an old key to a new key. It is recommended

that you specify an overlapping time of ﬁve minutes for transitioning from one key to the next. Whenever two

keys are valid at the same time, the Motorola Netopia

router tries to determine if other peers (devices that it

has received an authenticated packet from in the past three minutes) on its network are using the new key. If

any of the peers have not used the new key yet, the Motorola Netopia

router will send RIP updates twice, once

with each key.

If the last valid key expires, the Device Event History logs a “* RIP: last authentication key expired” message,

and continues to use that key as if it were still valid.

Authentication configuration

To conﬁgure RIP-2 MD5 authentication, from the Main Menu, select System Conﬁguration, then IP Setup.

The IP Setup screen appears.

IP SetupSystem Configuration

Main

IP Setup

Ethernet IP Address: 192.168.1.1

Ethernet Subnet Mask: 255.255.255.0

Define Additional Subnets...

Default IP Gateway: 0.0.0.0

Backup IP Gateway: 0.0.0.0

Primary Domain Name Server: 0.0.0.0

Secondary Domain Name Server: 0.0.0.0

Domain Name:

Rip Options...

Proxy Arp Enabled: No

Multicast Forwarding... None

VRRP Options...

Static Routes... IP Address Serving...

Additional LANs...

Enter an IP address in decimal and dot form (xxx.xxx.xxx.xxx).

Set up the basic IP attributes of your Netopia in this screen.