BGP MD5 with Juniper Router

Ondrej Filip feela at network.cz
Tue Mar 26 12:47:48 CET 2013


On 26.3.2013 12:40, Kay Rechthien wrote:
> Hey,
> On 08.03.2013, at 16:21, Ondrej Filip <feela at network.cz> wrote:
> 
>> On 8.3.2013 09:38, Rashed Alwarrag wrote:
>>> Dear birds Experts
>>
>> Hi Rashed!
>>
>>>
>>> we have a BGP peer between Bird server and Juniper devices , we
>>> mentioned that in our Juniper router wrong MD5 password log appear as
>>> below
>>>
>>> kernel: %KERN-4: tcp_auth_ok: Packet from 192.168.0.10:179
>>> <http://192.168.0.10:179> wrong MD5 digest
>>>
>>> when we capture the BGP update we mentioned that the bird server is
>>> sending to the router the update with an unexpected MD5 key and The
>>> router ignore this update then again the bird server retransmit the
>>> same update with correct MD5
>>
>> Are you using Linux or BSD?
>>
>> 		Ondrej
> 
> we have the issue also here. Our Routeservers are running latest Ubuntu.
> the issue is visible at cisco and juniper routers clearly. there are like ~10 bad packets per day and they don't affect the bgp session but they create a log entry every time at the routers.
> 

Can you send us the output of this command: "ethtool -k <interface>"
(posibly 'ethtool -k eth0")

This usually helps:

/usr/sbin/ethtool -K eth0 tso off
/usr/sbin/ethtool -K eth0 gso off
/usr/sbin/ethtool -K eth0 sg off




> best regards
> kay
> 
> 




More information about the Bird-users mailing list