Administrator Guide

ManualsBrandsDell ManualsAccess PlatformsC9010 Modular Chassis Switch

1181

Parameters

null Causes an authentication policy configured for the area to not be inherited on the

interface.

ipsec spi number

Security Policy index (SPI) value that identifies an IPsec security policy. The range is from

256 to 4294967295.

MD5 | SHA1

Authentication type: Message Digest 5 (MD5) or Secure Hash Algorithm 1 (SHA-1).

key-encryption-

type

(OPTIONAL) Specifies if the key is encrypted.

Valid values: 0 (key is not encrypted) or 7 (key is encrypted).

key

Text string used in authentication.

For MD5 authentication, the key must be 32 hex digits (non-encrypted) or 64 hex digits

(encrypted).

For SHA-1 authentication, the key must be 40 hex digits (non-encrypted) or 80 hex digits

(encrypted).

Defaults Not configured.

Command Modes INTERFACE

Command History

This guide is platform-specific. For command information about other platforms, refer to the relevant Dell

Networking OS Command Line Reference Guide.

The following is a list of the Dell Networking OS version history for this command.

Version Description

9.9(0.0) Introduced on the C9010.

9.2(1.0) Introduced on the Z9500.

9.1.(0.0) Introduced on S4810 and Z9000.

8.4.2.0 Introduced on the E-Series.

8.3.19.0 Introduced on the S4820T.

Usage Information

Before you enable IPsec authentication on an OSPFv3 interface, first enable IPv6 unicast routing globally,

configure an IPv6 address and enable OSPFv3 on the interface, and assign the interface to an area.

An SPI value must be unique to one IPsec security policy (authentication or encryption) on the router. Configure

the same authentication policy (same SPI and key) on each OSPFv3 interface in a link.

To remove an IPsec authentication policy from an interface, enter the no ipv6 ospf authentication spi number

command. To remove null authentication on an interface to allow the interface to inherit the authentication policy

configured for the OSPFv3 area, enter the no ipv6 ospf authentication null command.

Commands

area authentication – configures an IPsec authentication policy for an OSPFv3 area.

show crypto ipsec policy – displays the configuration of IPsec authentication policies.

show crypto ipsec sa ipv6 – displays the security associations set up for OSPFv3 interfaces in authentication

policies.

ipv6 ospf bfd all-neighbors

Establish BFD sessions with all OSPFv3 neighbors on a single interface or use non-default BFD session parameters.

C9000 Series

Syntax

ipv6 ospf bfd all-neighbors [disable | [interval interval min_rx min_rx

multiplier value role {active | passive}]]

To disable all BFD sessions on an OSPFv3 interface implicitly, use the no ipv6 ospf bfd all-neighbors

disable command in interface mode..

1184 Open Shortest Path First (OSPFv2 and OSPFv3)