No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Configuration Guide - Reliability

CloudEngine 12800 and 12800E V200R002C50

This document describes the configurations of Reliability, including BFD Configuration, VRRP Configuration, DLDP Configuration, Smart Link and Monitor Link Configuration, EFM Configuration, and CFM Configuration.
Rate and give feedback :
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
(Optional) Configuring the Authentication Mode for DLDP Packets

(Optional) Configuring the Authentication Mode for DLDP Packets

Context

To ensure packet validity on an insecure network, users can configure one of the following authentication modes for DLDP packets.

Table 4-7 Authentication modes of DLDP packets

Authentication Mode

Description

Simple authentication mode

The receiver compares the authentication key and authentication type of the packet with those configured on the local end. If they are different, the receiver discards the packet.

MD5 authentication mode

The receiver compares the authentication key and authentication type of the packet with the MD5-encrypted password and authentication type that are configured on the local end. If they are different, the receiver discards the packet.

SHA authentication mode

The receiver compares the authentication key and authentication type of the packet with the SHA-encrypted password and authentication type that are configured on the local end. If they are different, the receiver discards the packet.

HMAC-SHA256 authentication mode

The receiver compares the authentication key and authentication type of the packet with the HMAC-encrypted password and authentication type that are configured on the local end. If they are different, the receiver discards the packet.

Procedure

  1. Run system-view

    The system view is displayed.

  2. Run dldp authentication-mode { md5 md5-password | simple simple-password | sha sha-password | hmac-sha256 hmac-password }

    The authentication mode is configured for DLDP packets.

    By default, the DLDP packets are not authenticated.

    NOTE:

    The local and remote devices must use the same authentication mode and the authentication password; otherwise, the authentication fails. DLDP works properly only after the authentication succeeds.

    For security purposes, you are advised to use HMAC-SHA256 as the authentication algorithm of DLDP.

  3. Run commit

    The configuration is committed.

Translation
Download
Updated: 2019-03-21

Document ID: EDOC1000166606

Views: 90715

Downloads: 84

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next