Archive

Archive for November, 2008

Securing MPLS LDP

November 25, 2008 Leave a comment

To secure LDP communication between LSRs peer (PE to P), we can use MD5 authentication. Below is the simple configuration for MPLS LDP authentication:

Router(config)#mpls ldp neighbor direct_peer_ip password p@55w0rd

Verification:

Router#sh mpls ldp nei peer_ip_address detail
Peer LDP Ident: peer_ip_address:0; Local LDP Ident local_ip_address:0
TCP connection: peer_ip_address.12780 – local_ip_address.646; MD5 on
Password: not required, neighbor, in use
State: Oper; Msgs sent/rcvd: 3/4; Downstream; Last TIB rev sent 0
Up time: 00:00:55; UID: 4; Peer Id 0;
LDP discovery sources:

ldp-md51