Enabling replay-protect Function
Context
By enabling the replay-protect function, you can obtain the Identification field in the last RIP packet sent by a RIP interface before it goes Down. This prevents RIP routing information on both ends from being unsynchronized or lost.
If the Identification field in the last RIP packet sent before a RIP interface goes Down is X, after the interface goes Up, the Identification field in the subsequent RIP packet sent by this interface becomes 0. If the remote end does not receive the RIP packet with the Identification field being 0, subsequent RIP packets will be discarded until the remote end receives the RIP packet with the Identification field being X+1. This leads to the unsynchronization and loss of RIP routing information of both ends.
To solve this problem, you need to enable the replay-protect function so that RIP can obtain the Identification field in the last RIP packet sent before the RIP interface goes Down and increase the Identification field in the subsequent RIP packet by one.
Procedure
- Run system-view
The system view is displayed.
- Run interface interface-type interface-number
The interface view is displayed.
- Run rip authentication-mode md5 nonstandard password-key key-id
RIP-2 is configured to use MD5 authentication, and authentication packets use the nonstandard packet format.
- Run rip replay-protect
The replay-protect function is enabled.
If you run the rip replay-protect command in the same view multiple times, only the last configuration takes effect.