1.4.0 : all bgp peers in OpenSent

Ondrej Zajicek santiago at crfreenet.org
Tue Mar 25 21:56:44 CET 2014


On Tue, Mar 25, 2014 at 04:04:31PM +0200, Alexander Shikov wrote:
> Ondrej mentioned: 
> "If any BGP proto sets 'password', MD5 auth on listening
> socket is enabled. It seems that new socket (for accepted TCP
> connection) inherits the MD5 auth even when there is no appropriate SA.
> It may be a change of behavior in newer FreeBSDs, as the code worked
> on FreeBSD in the past AFAIK."
> 
> 
> Now I have a question to community: does anyone have bird installation
> with selective authentication of BGP peers on same interface?
> Does it work for Linux-like systems or it is FreeBSD-specific issue?

I am sure it is a BSD-specific issue, on Linux it works fine.

-- 
Elen sila lumenn' omentielvo

Ondrej 'SanTiago' Zajicek (email: santiago at crfreenet.org)
OpenPGP encrypted e-mails preferred (KeyID 0x11DEADC3, wwwkeys.pgp.net)
"To err is human -- to blame it on a computer is even more so."
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 197 bytes
Desc: Digital signature
URL: <http://trubka.network.cz/pipermail/bird-users/attachments/20140325/a5b29c55/attachment.asc>


More information about the Bird-users mailing list