Got it

AR2200 can't establish VRRP with md5 authentication with Cisco router

Latest reply: Dec 24, 2018 01:49:18 669 1 0 0 0

Hello everyone,

I would like to share an interesting case i stumbled upon with you.

When trying to establish VRRP between a Cisco router and an AR2200 and implement MD5 authenticati, on the AR gives the following error:

Huawei VRRP/1/VRRPAUTHFAILED:OID 1.3.6.1.2.1.68.0.2 VRRP failed to authentication. (IPAddress=10.57.13.20, AuthErrorType=1)

Without authentication the VRRP works as intended.


Cause:

AuthErrorType=1 means the AR did not support the authentication type on the other side.

Cisco router encapsulates the packet with the wrong authentication type flag

From RFC 2338, the authentication type should be 0, 1, 2. md5 is IP Authentication Header, so Cisco should fill this as 2, not 254.


That's all for this case, If you have any problems or suggestions, please comment below.

Thanks.

  • x
  • convention:

xiaomumu
Created Dec 24, 2018 01:49:18

This post was last edited by xiaomumu at 2018-12-27 02:28. AR2200 could not establish VRRP with Cisco router through md5 authentication, which is a good case list and very helpful for future projects.
View more
  • x
  • convention:

Comment

You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.
Information Protection Guide
Thanks for using Huawei Enterprise Support Community! We will help you learn how we collect, use, store and share your personal information and the rights you have in accordance with Privacy Policy and User Agreement.