
<p class="wp-block-paragraph">éåéå¸ï¼é 便çåçè¨ï¼è¥æé¯èª¤è«ä¸åææã</p>



<p class="wp-block-paragraph">Junosåºæ¬æä½årootå¯ç¢¼è¨å®å¯åèæä¹åçæç« ï¼<a href="https://kerker.website/juniper-junos%E5%9F%BA%E6%9C%AC%E6%93%8D%E4%BD%9C%E3%80%81root%E5%AF%86%E7%A2%BC%E8%A8%AD%E5%AE%9A/">Juniper Junosåºæ¬æä½ãrootå¯ç¢¼è¨å®</a></p>



<p class="wp-block-paragraph">ææJuniperç¸éæç« å表ï¼<a href="https://kerker.website/juniper-junos-%E7%B3%BB%E5%88%97-%E6%96%87%E7%AB%A0%E5%88%97%E8%A1%A8/">Juniper JunOS ç³»åæç« å表</a></p>



<!--more-->



<p class="wp-block-paragraph">éæ¼OSPFçåºæ¬è¨å®å¯ä»¥åèï¼<a href="https://kerker.website/juniper-junos%e5%8b%95%e6%85%8b%e8%b7%af%e7%94%b1ospf%e5%9f%ba%e6%9c%ac%e8%a8%ad%e5%ae%9a/" class="aioseop-link">Junosåæ è·¯ç±OSPFåºæ¬è¨å®</a></p>



<p class="wp-block-paragraph">OSPFåå®å¯ä»¥ééèªèä¾ä¿èåªæåä¿¡ä»»çè¨åè½å¤ å å ¥è·¯ç±äº¤æï¼æ¤åè½é è¨æ¯ééçã</p>



<p class="wp-block-paragraph">ç¸å°æ¼Ciscoè½å¤ å¨areaãinterfaceè¨å®èªèï¼Juniperè¨åå è½å¤ æ¼interfaceè¨å®èªèé¸é ã</p>



<p class="wp-block-paragraph">æ¶æ§åå°æ²¿ç¨åºæ¬è¨å®è£¡çæ¶æ§å¦ä¸ï¼ææçä»é¢é½å·²ç¶äºå å å ¥ospf area 0.0.0.0äºã</p>



<figure class="wp-block-image size-large"><img src="https://lh3.googleusercontent.com/pw/AP1GczPxMkb7af5Y4Afaqmg8E5nvH9KD9ypYsG8nxYNax46IbaWp1jXvsPMHGN2TreOVVPasTnTMElCNLeyePviPkdUYr1f5iB1ccj8dI0fHaeAidIbJQyfjcjtkuMJTzRXHA76qsqKi-BSFnPfXBgWphwb_=w439-h471-s-no-gm?authuser=0" alt=""/></figure>



<p class="wp-block-paragraph">Junosä¸å¯ä»¥è¨å®simple-passwordåMD5å ©ç¨®èªèæ©å¶ã</p>



<p class="wp-block-paragraph">å ¶ä¸simple-passwordæ¯ç´æ¥å°password以ææçæ¹å¼åµå ¥å°å ä½çºèªè使ç¨ï¼è¥å°å éç«è½åæå¯è½éå°åç¨ã</p>



<p class="wp-block-paragraph">è¥ä½¿ç¨MD5èªèï¼åæ¯å°Hashå¼åchecksumå å ¥å°å é²è¡èªèï¼ç¸å°è¼çºå®å ¨ã</p>



<p class="wp-block-paragraph">é裡å°ä»¥sw1è³sw2çospf çºä¾ãã </p>



<p class="wp-block-paragraph">å¨éå§è¨å®ä¹åï¼æåå¯ä»¥å 使ç¨ä¸åæ令確èªç®åçOSPFèªèçæ ï¼</p>



<pre class="wp-block-code"><code> KerKer@sw1>; show ospf interface detail 
 Interface State Area DR ID BDR ID Nbrs
 ge-0/0/23.0 BDR 0.0.0.0 10.0.0.2 10.0.0.1 1
 Type: LAN, Address: 172.16.0.1, Mask: 255.255.255.252, MTU: 1500, Cost: 1
 DR addr: 172.16.0.2, BDR addr: 172.16.0.1, Priority: 128
 Adj count: 1
 Hello: 10, Dead: 40, ReXmit: 5, Not Stub
 Auth type: None
 Protection type: None
 Topology default (ID 0) ->; Cost: 1</code></pre>



<p class="wp-block-paragraph">Auth type é¡¯ç¤ºçº noneï¼å³ä»£è¡¨æªåç¨èªèé¸é ã</p>



<p class="wp-block-paragraph">å¦å¤ä¹å 檢æ¥ç®åæé£æ¥çospf neighborï¼</p>



<pre class="wp-block-code"><code> KerKer@sw1>; show ospf neighbor 
 Address Interface State ID Pri Dead
 172.16.0.2 ge-0/0/23.0 Full 10.0.0.2 128 36</code></pre>



<p class="wp-block-paragraph">è¨éä¸çæ å¾æåå°±å¯ä»¥éå§è¨å®èªèäºï¼é裡æåç´æ¥è¨å®è¼å®å ¨çMD5èªèï¼æåå°key-idè¨å®çº1ï¼å¯ç¢¼çºKerKerï¼</p>



<pre class="wp-block-code"><code> KerKer@sw1# set protocols ospf area 0.0.0.0 interface ge-0/0/23.0 authentication md5 1 key KerKer</code></pre>



<p class="wp-block-paragraph">æåå¯ä»¥å¨å½ä»¤æ¨¡å¼ä¸ä½¿ç¨ä¸åæ令æ¥çè¨å®ï¼å¯ç¢¼é¨åå¨è¨å®æªä¸æå å¯ä¿è·ï¼</p>



<pre class="wp-block-code"><code> KerKer@sw1>; show configuration protocols ospf 
 area 0.0.0.0 {
 interface ge-0/0/23.0 {
 authentication {
 md5 1 key "$9$bd2oZHkPTF/RheWXxsY"; ## SECRET-DATA
 }
 }
 }</code></pre>



<p class="wp-block-paragraph">å次確èªOSPFèªèçæ ï¼Auth typeå·²è®æMD5ï¼</p>



<pre class="wp-block-code"><code> KerKer@sw1>; show ospf interface detail 
 Interface State Area DR ID BDR ID Nbrs
 ge-0/0/23.0 BDR 0.0.0.0 10.0.0.2 10.0.0.1 1
 Type: LAN, Address: 172.16.0.1, Mask: 255.255.255.252, MTU: 1500, Cost: 1
 DR addr: 172.16.0.2, BDR addr: 172.16.0.1, Priority: 128
 Adj count: 1
 Hello: 10, Dead: 40, ReXmit: 5, Not Stub
 Auth type: MD5, Active key ID: 1, Start time: 2000 Jan 5 00:04:27 UTC
 Protection type: None
 Topology default (ID 0) ->; Cost: 1</code></pre>



<p class="wp-block-paragraph">å次æ¥çospf neighboræç¼ç¾æ¤æåæ¬çé°å± å·²ç¶ä¸æ·é£ç·ï¼</p>



<pre class="wp-block-code"><code> KerKer@sw1>; show ospf neighbor </code></pre>



<p class="wp-block-paragraph">éæ¯å çºospfèªèè¨å®éè¦å ©ç«¯é½åç¸åè¨å®æè½çæï¼æåé²å°sw2åè¨å®ï¼</p>



<pre class="wp-block-code"><code> KerKer@sw2# set protocols ospf area 0.0.0.0 interface ge-0/0/23.0 authentication md5 1 key KerKer</code></pre>



<p class="wp-block-paragraph">commitçæå¾å次åå°sw1å次確èªospf neighborï¼</p>



<pre class="wp-block-code"><code> KerKer@sw1>; show ospf neighbor 
 Address Interface State ID Pri Dead
 172.16.0.2 ge-0/0/23.0 Full 10.0.0.2 128 33</code></pre>



<p class="wp-block-paragraph">å°é裡æåå·²ç¶å®æospf authenticationçè¨å®äºï¼é麼è¨å®å¾åªæç¥éèªèå¯ç¢¼çè¨åæè½å å ¥ospfè·¯ç±äº¤æäºï¼</p>

[Juniper] Junos動態路由OSPF驗證機制(authentication)
