The MSTP Configuration of stp md5-key

Function

The stp md5-key command is used to set the MD5 key for the MD5 encryption algorithm in an MST region. When you need to encrypt the region to ensure the device security, run this command. After the MD5 key for the MD5 encryption algorithm in the region is set, two devices cannot communicate with each other unless their MD5 keys are the same.
The undo stp md5-key command is used to restore the default MD5 key for the MD5 encryption algorithm in the region. The default MD5 key is recommended. After the MD5 key is modified, you can run this command to restore the default MD5 key. After the default MD5 key for the MD5 encryption algorithm in the region is restored, the MD5 key is 0x13AC06A62E47FD51F95D2BA243CD0346.

Format

stp md5-key number
undo stp md5-key

Parameters

Parameter	Description	Value
number	Indicates the encryption parameter. The string must be hexadecimal and in length of multiples of 2.	Character string type, a string of 1-32 characters. Default: 0x13AC06A62E47FD51F95D2BA243CD0346 Recommended value: 0x13AC06A62E47FD51F95D2BA243CD0346.

Modes

Global config mode, OSN 1500, OSN 2500

Level

Operator level

Usage Guidelines

• For the device security, two devices in a same region cannot communicate with each other unless their MD5 keys are the same. Thus, it is recommended to use the default MD5 key in the settings.
• Two devices that belong to a same MST region must meet the following requirements:
  • The MST region names are the same.
  • The revision levels of the MST region are the same.
  • The configuration digest are the same. The configuration digest is calculated by using the MD5 encryption algorithm based on the VLAN mapping table of all configured spanning trees in the MST region and the MD5 key.

Example

To set the MD5 key for the MD5 encryption algorithm in an MST region to 00e0fc042958, do as follows:

huawei(config)#stp md5-key                                                      
{ string<S><Length 1-32> }:00e0fc042958                                                
                                                                                
  Command:                                                                      
          stp md5-key 00e0fc042958

To restore the default MD5 key for the MD5 encryption algorithm in an MST region, do as follows:

huawei(config)#undo stp md5-key   

System Response

• The system does not display any message after the command is executed successfully.

More blog:

How to change the OLT type device?

How many Remote frame ( RSU with HABD ) can UA5000-PVM board support?

What’s the fault S5700, and all multicast traffic is being forwarded?