isis remote hello-auth

Specify the authentication type used for remote Intermediate-System-to-Intermediate-System (IS-IS) hello packets on the interface. The type can be none, simple, hmac-md5, or hmac-sha-256.

Syntax

Command Parameters

key WORD<1-16>
Specifies the authentication key (password) that the receiving router uses to verify the packet.
key-id <1-255>
Specifies the optional key ID.
type { none | simple | hmac-md5 | hmac-sha-256}
Specifies the authentication type used for remote IS-IS hello packets on the interface. The type can be one of the following:
  • Simple - Simple password authentication uses a text password in the transmitted packet. The receiving router uses an authentication key (password) to verify the packet. You can also specify a key value.

  • hmac-md5 - MD5 authentication creates an encoded checksum in the transmitted packet. The receiving router uses an authentication key (password) to verify the MD5 checksum of the packet. You can also specify a key value and key-id.

  • hmac-sha-256 - With SHA-256 authentication, the switch adds an HMAC-SHA256 digest to each Hello packet. The switch that receives the Hello packet computes the digest of the packet and compares it with the received digest. If the digests match, the packet is accepted. If the digests do not match, the receiving switch discards the packet. You can also specify a key value and key-id.

The default type is none.

Default

The default is no authentication type (none).

Command Mode

GigabitEthernet Interface Configuration

Usage Guidelines

This command does not apply to all hardware platforms. For more information about feature support, see Fabric Engine and VOSS Feature Support Matrix.