Configures various
parameters, including authentication, area identification, virtual
link ID, and delay/interval values for the specified OSPF
area using a specific VRF instance.
Privilege:
Security Administrator,
Administrator
Syntax
[no] area { decimal_value | ip_address } {authentication [ message-digest ] | default-cost cost_value | nssa [default-information-originate] [no-redistribution] [no-summary] [translate-always] [translate-candidate] [translate-never] | stub [no-summary] | virtual-link router_ip_address [authentication {message-digest | null | text}| authentication-key {encrypted
password encrypted_string | password password_string}| message-digest-key key_id md5 [encrypted
password encrypted_string | password password_string]} [dead-interval] [hello-interval] [retransmit-interval] [transmit-delay]
no
Disables or removes
configured parameters for the specified OSPF area using a specific VRF
instance.
ip_address
Specifies the IP address
of the area where authentication will be enabled in IPv4 dotted-decimal
notation.
decimal_value
Specifies the identification
number of the area where parameters to be configured as an integer
from 0 through 4294967295.
authentication
Sets the OSPF authentication
type to use the simple authentication method.
message-digest
Sets the OSPF authentication
type to use the message digest 5 (MD5) authentication method.
default-cost cost_value
Sets the default cost
for an OSPF area. cost_value must
be an integer from 0 through 16777215.
nssa [default-information-originate] [no-redistribution
no-summary] [translate-always] [translate-candidate] [translate-never]
Configures and defines
an area as an NSSA (Not So Stubby Area) and configures OSPF parameters
for it.
default-information-originate:
Configures the OSPF VRF instances to originate default information
to the NSSA area.
no-redistribution:
Configures the OSPF VRF instance to not to redistribute external
routes to the NSSA area.
no-summary:
Configures the OSPF VRF instance to not to inject the inter-area
routes into NSSA.
translate-always:
Configures the NSSA-ABR (Area Border Router) always to translate.
By default this is disabled.
translate-candidate:
Configures the NSSA-ABR always to translate election. By default
this is enabled.
translate-never:
Configures the NSSA-ABR never to translate. By default this is disabled.
stub [no-summary]
Specifies an OSPF
area as an stub area configures the NSSA-ABR never to translate.
By default this is disabled.
no-summary:
Disables (stops) the ABR from sending summary LSAs into the stub
area.
virtual-link router_id
Specifies the router
identifier which provides a virtual link between an area that cannot
be physically connected to the network backbone and an area that
is physically connected to the network backbone.
router_id must
be an IP address in IPv4 dotted-decimal notation of the ABR to be
linked to.
authentication {message-digest | null | text}
Configures the OSPF
authentication method to be used by the virtual link between an
area that cannot be physically connected to the network backbone
and an area that is physically connected to the network backbone.
message-digest:
Set the OSPF authentication type to use the message digest (MD)
authentication method.
null: Set the OSPF
authentication type to use no authentication, thus disabling either
MD or clear text methods.
text: Set the OSPF
authentication type to use the clear text authentication method.
authentication-key
Configures the authentication
password for the virtual link between an area that cannot be physically
connected to the network backbone and an area that is physically
connected to the network backbone.
message-digest-key key_id
Specifies the MD key
identifier number for virtual link connection. key_id must
be an integer from 1 through 255.
md5
Sets the message digest
to MD5 for virtual link connection.
[encrypted] password passwd_string
Specifies the password
required for virtual link connection authentications. The keyword password is
optional and if specified passwd_string must
be an alphanumeric string of 1 through 63 characters. The password
specified must be in an encrypted format if the optional keyword encrypted was
specified.
The encrypted keyword
is intended only for use by the system while saving configuration
scripts. The system displays the encrypted keyword
in the configuration file as a flag that the variable following
the password keyword
is the encrypted version of the plain text password. Only the encrypted
password is saved as part of the configuration file. encrypted_string is
an alphanumeric string of 1 through 523 characters.
dead-interval value
Specifies the dead
interval (in seconds) that the router should wait, during which
time no packets are received and after the router considers a neighboring
router to be off-line. value must
be an integer from 1 through 65535.
hello-interval value
Specifies the hello
interval (in seconds) before sending a hello packet. value must
be an integer from 1 through 65535.
retransmit-interval value
Specifies the delay
between retransmission (in seconds) that router should wait before retransmitting
a packet. value must
be an integer from 1 through 3600.
transmit-delay value
Specifies the interval
(in seconds) that the router should wait before transmitting a packet. value must
be an integer from 1 through 3600.
Usage:
Use this command to
configure/set the various network/connection/authentication parameters
of OPSF areas using specific VRF instance.
Example:
The following command
enables authentication for an OSPF area defined by the IP address
192.168.100.10 and
the OSPF authentication type to MD5:
area 192.168.100.10
authentication message-digest
The following command
defines the area designated by the IP address
192.168.100.10 as
an NSSA area where translation of NSSA candidate is enabled by default:
area 192.168.100.10 nssa
The following command
defines the OSPF area defined by the IP address
192.168.100.10 as
a stub area:
area 192.168.100.10 stub
The following command
creates a virtual link between the OSPF areas defined by the IP address
192.168.100.10 and
the IP address
192.168.200.20:
area 192.168.100.10
virtual-link 192.168.200.20
The following command
sets the authentication method for a virtual link between the OSPF areas
defined by the IP address
192.168.100.10 and
the IP address
192.168.200.20 to
use no authentication:
area 192.168.100.10
virtual-link 192.168.200.20 null
The following command
creates an authentication password of
123456 for
a virtual link between the OSPF areas defined by the IP address
192.168.100.10 and
the IP address
192.168.200.20:
area 192.168.100.10
virtual-link 192.168.200.20 authentication-key password 123456
The following command
enables the use of MD5-based OSPF authentication for a virtual link
between the OSPF areas defined by the IP address
192.168.100.10 and
the IP address
192.168.200.20,
sets the MD5 Key ID to
25, and
the password to
123456:
area 192.168.100.10
virtual-link 192.168.200.20 message-digest-key 25 md5 password 123456
The following command
sets the retransmit interval for a virtual link between the OSPF areas
defined by the IP address
192.168.100.10 and
the IP address
192.168.200.20 to
60 seconds:
area 192.168.100.10
virtual-link 192.168.200.20 retransmit-interval 60