BFD authentication
Authentication for BFD sessions is disabled by default. Ciena recommends the implementation of BFD authentication when you run BFD over multiple hops or through insecure tunnels.
The authentication section in the BFD control packet is optional. Based on the type of authentication, the receiving system determines the validity of the received packet. The receiving system either accepts the packet for further processing or discards it. For authentication to work, both systems in a BFD session must use the same authentication type, authentication keys, and so on.
- Simple password
- Keyed MD5
- Meticulous keyed MD5
- Keyed SHA1
- Meticulous keyed SHA1