search

FRRouting / frr

The FRRouting Protocol Suite
https://frrouting.org/
Other
3.21k stars 1.24k forks source link

EIGRP: authentication commands not applied from frr.conf on startup #8218

Open mruprich opened 3 years ago

mruprich commented 3 years ago

When trying to use 'ip authentication key-chain eigrp ' and 'ip authentication mode eigrp md5' it only works when used manually from vtysh. If these commands are present in frr.conf when frr is starting up, they are not applied and following errors are produced:

EIGRP: [EC 100663331] error processing configuration change: error [internal inconsistency] event [validate] operation [create] xpath [/frr-interface:lib/interface[name='eth0'][vrf='default']/frr-eigrpd:eigrp/instance[asn='1']]

EIGRP: [EC 100663337] nb_candidate_commit_prepare: failed to validate candidate configuration

EIGRP: [EC 100663331] error processing configuration change: error [internal inconsistency] event [validate] operation [create] xpath [/frr-interface:lib/interface[name='eth0'][vrf='default']/frr-eigrpd:eigrp/instance[asn='1']]

EIGRP: [EC 100663337] nb_candidate_commit_prepare: failed to validate candidate configuration

The frr.conf looks like this:

frr version 7.5
frr defaults traditional
hostname xxxxxxxxxxxxxxxxxxxxxxxxxxx
log file /tmp/frr_log warnings
log stdout errors
log syslog errors
no ip forwarding
no ipv6 forwarding
log commands
!
key chain eigrp
 key 1
  key-string eigrp_secure
 exit
!
interface eth0
 ip authentication key-chain eigrp 1 eigrp
 ip authentication mode eigrp 1 md5
!
router eigrp 1
 network 10.0.136.0/22
 network 192.168.100.0/24
!
line vty
!

After the startup, the 'sh run' command shows only this:

frr version 7.5
frr defaults traditional
hostname xxxxxxxxxxxxxxxxxxx
log file /tmp/frr_log warnings
log stdout errors
log syslog errors
no ip forwarding
no ipv6 forwarding
log commands
!
key chain eigrp
 key 1
  key-string eigrp_secure
 exit
!
router eigrp 1
 network 10.0.136.0/22
 network 192.168.100.0/24
!
line vty
!

[x] Did you check if this is a duplicate issue? [x] Did you test it on the latest FRRouting/frr master branch?

To Reproduce

  1. start frr with frr.conf as described above

Expected behavior Interface commands related to eigrp authentication should be applied on startup.

Versions FRR Version: 7.5.1 Tested on Fedora 34 kernel-5.11.0-156.fc34.x86_64

Additional context As described above, manual commands work and no error is produced. Is there perhaps a different flow in the code when applying commands manually?

qlyoung commented 3 years ago

@rzalamena any chance you could take a look at this one? I believe you did the EIGRP Northbound conversion.