OpenBGPd + TCP-MD5 sig fails after a few weeks
Antoine Beaupré
anarcat at koumbit.org
Thu Nov 28 15:17:00 UTC 2013
On 2013-11-28 10:05:55, Ermal Luçi wrote:
> On Wed, Nov 27, 2013 at 7:12 PM, Antoine Beaupré <anarcat at koumbit.org>wrote:
>
>> On 2013-11-27 05:58:12, Ermal Luçi wrote:
>> > You can use the port here
>> > https://github.com/pfsense/pfsense-tools/tree/master/pfPorts/openbgpd
>> > It has integration with pfkey sockets of FreeBSD in the daemon itself and
>> > you have to specify only th espd policy through setkey.
>> >
>> > It works for pfSense.
>>
>> While it seems to bootstrap properly, it still fails to isntall a
>> security association, in my bgpd.conf:
>>
>> tcp md5sig password "[...]"
>>
>
> Probably because you are putting "(quotes) on the password and that is
> wrong.
> That means password on the connection is wrong since it has " in it.
> Think its an issue of the bgpd parser on this.
I also tried without the quotes, same effect.
A.
--
Never underestimate the bandwidth of a station wagon full of tapes
hurtling down the highway.
- Andrew S. Tanenbaum, "Computer Networks"
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 835 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/freebsd-net/attachments/20131128/bd974024/attachment.sig>
More information about the freebsd-net
mailing list