Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

TechLibrary
Navigation

Supported Platforms

 

Related Documentation

 

key-chain (BGP BFD Authentication)

Syntax

key-chain key-chain-name;

Hierarchy Level

[edit logical-systems logical-system-name protocols bgp bfd-liveness-detection authentication],[edit logical-systems logical-system-name protocols bgp group group-name bfd-liveness-detection authentication],[edit logical-systems logical-system-name protocols bgp group group-name neighbor address bfd-liveness-detection authentication],[edit logical-systems logical-system-name routing-instances routing-instance-name protocols bgp bfd-liveness-detection authentication],[edit logical-systems logical-system-name routing-instances routing-instance-name protocols bgp group group-name bfd-liveness-detection authentication],[edit logical-systems logical-system-name routing-instances routing-instance-name protocols bgp group group-name neighbor address bfd-liveness-detection authentication],[edit protocols bgp bgp bfd-liveness-detection authentication],[edit protocols bgp group group-name bgp bfd-liveness-detection authentication],[edit protocols bgp group group-name neighbor address bfd-liveness-detection authentication],[edit routing-instances routing-instance-name protocols bgp bfd-liveness-detection authentication],[edit routing-instances routing-instance-name protocols bgp group group-name bfd-liveness-detection authentication],[edit routing-instances routing-instance-name protocols bgp group group-name neighbor address bfd-liveness-detection authentication]

Release Information

Statement introduced in Junos OS Release 8.1.

Statement introduced in Junos OS Release 9.0 for EX Series switches.

Support for BFD authentication introduced in Junos OS Release 9.6.

Statement introduced in Junos OS Release 12.1 for the QFX Series.

Description

Associate a security key with the specified BFD session using the name of the security keychain. Each key has a unique start time within the keychain. Keychain authentication allows you to change the password information periodically without bringing down peering sessions. This keychain authentication method is referred to as hitless because the keys roll over from one to the next without resetting any peering sessions or interrupting the routing protocol.

Options

key-chain-name

Name of the authentication keychain. The keychain name must match one of the keychains configured with the key-chain key-chain-name statement at the [edit security authentication-key-chain] hierarchy level.

Required Privilege Level

routing—To view this statement in the configuration.

routing-control—To add this statement to the configuration.

 

Related Documentation

 

Published: 2013-08-15

Supported Platforms

 

Related Documentation

 

Published: 2013-08-15

Previous Page Next Page