QARSHI-2022
[edit] protocols
{
isis {
level 1 {
authentication-key "$9$aH1j8gqQ1gjyjgjhgjgiiiii"; # SECRET-
DATA authentication-type md5;
}
interface at-0/0/0.131 {
lsp-interval
50; level 2
disable; level
1 {
metric
3; hello-interval
5;
hold-time
60;
}
}
interface lo0.0 {
passive;
} traceoptions {
file isis-trace size 10m files 10;
flag normal; flag error;
}
}
}
5.
Marshrutlash
protokollari
uchun
autentifikatsiya
kalitini yangilash mexanizmini sozlang
BGP va IS-IS marshrutlash protokollari uchun autentifikatsiya kalitini
yangilash mexanizmini sozlashingiz mumkin. Ushbu mexanizm
OSPF kabi
QARSHI-2022
tegishli marshrutlash va signalizatsiya protokollarini to'xtatmasdan
autentifikatsiya kalitlarini yangilash imkonini beradi.
6.
Autentifikatsiya kaliti yangilanishlarini sozlash
Autentifikatsiya kalitini yangilash mexanizmini sozlash uchun [xavfsizlik
autentifikatsiyasi-kalit zanjirlarini tahrirlash] ierarxiyasi darajasida kalit
zanjiri bayonotini kiriting va bir nechta autentifikatsiya
kalitlaridan iborat
kalit zanjirini yaratish uchun kalit variantini belgilang. [edit security
authentication-key-chains] key-chain key-chain-name { key key {
algorithm (hmac-sha-1 | md5) options (basic | isis-enhanced)
secret
secret-data; start-time yyyy-mmdd.hh:mm:ss;
}
}
7.
Do'stlaringiz bilan baham: