Sending with one key and accepting another


With RIP text based authentication you can send with one key and accept another. The key sent will be the lower key in the key chain and the higher one is used to match the other sides sent key.

R4(config)#key chain RIP-AUTH
R4(config-keychain)#key 1
R4(config-keychain-key)#key-string cisco
R4(config-keychain-key)#accept-lifetime 00:00:00 Jan 1 1993 infinite
R4(config-keychain-key)#key 2
R4(config-keychain-key)#key-string ccie
R4(config-keychain-key)#send-lifetime 00:00:00 Jan 1 1993 infinite
R4(config-keychain-key)#
R4(config-keychain-key)#interface Serial0/1
R4(config-if)# ip rip authentication mode text
R4(config-if)# ip rip authentication key-chain RIP-AUTH

R5(config)#key chain RIP-AUTH
R5(config-keychain)#key 1
R5(config-keychain-key)#key-string ccie
R5(config-keychain-key)#send-lifetime 00:00:00 1 jan 1993 infinite
R5(config-keychain-key)#key 2
R5(config-keychain-key)#key-string cisco
R5(config-keychain-key)#accept-lifetime 00:00:00 1 jan 1993 infinite
R5(config-keychain-key)#ex
R5(config-keychain)#int s0/1
R5(config-if)#ip rip authentication key-chain RIP-AUTH

With this configuration R4 will send “cisco” and R5 “ccie”. Also Note: Text authentication is the default option.