[130092] in North American Network Operators' Group
Re: OSPFv3 Authentication
daemon@ATHENA.MIT.EDU (Venkatesh Sriram)
Tue Sep 28 06:09:51 2010
In-Reply-To: <AANLkTingr7CKniWzJ=nPjYs8LdEBLjoZF5kLCAOg1QLp@mail.gmail.com>
Date: Tue, 28 Sep 2010 15:39:31 +0530
From: Venkatesh Sriram <vnktshsriram@gmail.com>
To: Manav Bhatia <manavbhatia@gmail.com>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
While I have used MD5 with OSPFv2, I never used authentication with
OSPFv3 since IPsec is (a) not available on all platforms (or/and
requires a special license) and (b) requires too much of coordination
with other folks to bring it up. I know operators who use
authentication with ISIS for v6, but very little auth for
OSPFv3.Obviously, you'll find an equal number that enthusiastically
use auth with OSPFv3, so really there isnt any one right answer.
Sriram
On Tue, Sep 28, 2010 at 5:33 AM, Manav Bhatia <manavbhatia@gmail.com> wrote:
> Hi,
>
> I am doing a survey and was interested in knowing if network operators
> are using OSPFv3 with authentication [RFC 4552] turned on? I know that
> most providers turn on authentication with OSPFv2, but given that
> OSPFv3 needs IPsec integration and can thus get little cumbersome to
> configure, wanted to understand if a similar % of folks also turn on
> authentication for OSPFv3?
>
> You can unicast me your responses (if you dont wish to share it on the
> list) and i will collate all data and post a summary on the list.
>
> Cheers, Manav
>
>
