Hot Downloads

Welcome, Guest
Username: Password: Remember me

TOPIC: CHAP authentication

CHAP authentication 7 years 10 months ago #28987

  • SteveP
  • SteveP's Avatar
  • Offline
  • Distinguished Member
  • Posts: 161
  • Karma: 0
Let's say that I have two routers, RouterA and RouterB. If RouterA is in the periphery and wants to access RouterB in the central office, this is analogous to a client server model where RouterA is the client and RouterB is the server. I realise that RouterB will send the challenge and, if RouterA's response is correct, RouterB will allow the authentication and data transfer.

What if I have two routers in a lab, connected by a serial DCE/DTE cable? If I have them configured correctly with CHAP, how do they decide which one issues the challenge to the other? Does one become "dominant" and, if so, how? Is it like OSPF priority and based upon IP addresses or is it simply the first one to send the challenge that takes the lead?

A supplementary question is do the routers authenticate each other in both directions:

1. RouterA sends challenge to RouterB, which responds correctly and RouterA accepts that RouterB is what it's supposed to be, then

2. RouterB sends a challenge to RouterA, which responds correctly and RouterB accepts that RouterA is what it's supposed to be, hence allowing data transfer in both directions.

Thanks in advance.
The administrator has disabled public write access.
Time to create page: 0.069 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup