Chapter 10 Routing
USG20(W)-VPN Series User’s Guide
248
The following table describes the labels in this screen.
10.8 Routing Protocol Technical Reference
Here is more detailed information about RIP and OSPF.
Authentication Types
Authentication is used to guarantee the integrity, but not the confidentiality, of routing updates. The
transmitting router uses its key to encrypt the original message into a smaller message, and the
smaller message is transmitted with the original message. The receiving router uses its key to
encrypt the received message and then verifies that it matches the smaller message sent with it. If
the received message is verified, then the receiving router accepts the updated routing information.
The transmitting and receiving routers must have the same key.
The USG supports three types of authentication for RIP and OSPF routing protocols:
•
None
- no authentication is used.
•
Text
– authentication using a plain text password, and the (unencrypted) password is sent over
the network. This method is usually used temporarily to prevent network problems.
•
MD5
– authentication using an MD5 password and authentication ID.
MD5 is an authentication method that produces a 128-bit checksum, called a message-digest, for
each packet. It also includes an authentication ID, which can be set to any value between 1 and
255. The USG only accepts packets if these conditions are satisfied.
• The packet’s authentication ID is the same as the authentication ID of the interface that received
it.
Table 100
Configuration > Network > Routing > OSPF > Add > Add
LABEL
DESCRIPTION
Peer Router ID
Enter the 32-bit ID (in IP address format) of the other ABR in the virtual link.
Authentication
Select the authentication method the virtual link uses. This authentication protects the
integrity, but not the confidentiality, of routing updates.
None
uses no authentication.
Text
uses a plain text password that is sent over the network (not very secure).
MD5
uses an MD5 password and authentication ID (most secure).
Same as Area
has the virtual link also use the
Authentication
settings above.
Text Authentication
Key
This field is available if the
Authentication
is
Text
. Type the password for text
authentication. The key can consist of alphanumeric characters and the underscore,
and it can be up to 16 characters long.
MD5 Authentication
ID
This field is available if the
Authentication
is
MD5
. Type the default ID for MD5
authentication in the area. The ID can be between 1 and 255.
MD5 Authentication
Key
This field is available if the
Authentication
is
MD5
. Type the default password for
MD5 authentication in the area. The password can consist of alphanumeric characters
and the underscore, and it can be up to 16 characters long.
OK
Click
OK
to save your changes back to the USG.
Cancel
Click
Cancel
to exit this screen without saving.
Summary of Contents for ZyWall USG20-VPN
Page 17: ...17 PART I User s Guide ...
Page 18: ...18 ...
Page 99: ...99 PART II Technical Reference ...
Page 100: ...100 ...