Future of pf / firewall in FreeBSD ? - does it have one ?

sthaug at nethelp.no sthaug at nethelp.no
Mon Jul 21 05:49:05 UTC 2014


> Also, the openbsd stack has some essential features missing in freebsd,
> like mpls and md5 auth for bgp sessions.

I use MD5 auth for BGP sessions every day (and have been doing so for
several releases). One could definitely wish for better integration -
having to specify MD5 key both in /etc/ipsec.conf and in the Quagga
bgpd config is not nice. But it works.

MPLS would be nice - but is not a high priority. That's what I use
Juniper and Cisco routers for. For MPLS to be of any use I'd also need
a working IS-IS implementation, and I believe Quagga isn't quite there
yet.

Steinar Haug, Nethelp consulting, sthaug at nethelp.no


More information about the freebsd-questions mailing list