US Region

Grandmetric LLC
Brookfield Place Office
200 Vesey Street
New York, NY 10281
EIN: 98-1615498
Phone: +1 302 691 94 10

EMEA Region

ul. Metalowa 5, 60-118 Poznań, Poland
NIP 7792433527
+48 61 271 04 43

EIGRP: 2. How to enable EIGRP authentication

Design & Configure

EIGRP: 2. How to enable EIGRP authentication

Technology: Routing
Area: IGP
Vendor: Cisco
Software: 12.X , 15.X, IP Base, IP Services
Platform: Catalyst 3560, 3750, 3850, 4500, 6500, ISR Routers

EIGRP authentication supports MD5. If enabled, routers authenticates the source of each routing update packet that they receive. Following configuration prevents intruder from establishing fake EIGRP adjacency. The consequence of fake adjacency can be for example CPU over utilization or routing table poisoning.

Define Key chain:

Router(config)#key chain KEY_CHAIN
Router(config-keychain)#key 1
Router(config-keychain-key)#key-string KEY_STRING

Enable authentication on interface level:

Router(config)#interface fastEthernet 0/1
Router(config-if)#ip authentication mode eigrp 100 md5
Router(config-if)#ip authentication key-chain eigrp 100 KEY_CHAIN

Author: Marcin Bialy