10/STABLE openbgpd and bgp TCP MD5 signature
Patrick Lamaiziere
patfbsd at davenulle.org
Mon Jul 4 16:27:35 UTC 2016
Hello,
Is there anyone using openbgpd with BGP password with success?
I've setup the password using setkey :
add localip ippeer tcp 0x1000 -A tcp-md5 "secret!";
But as far I can see with tcpdump, the outgoing packets are not signed.
The kernel is built with
options IPSEC #IP security (requires device crypto)
options TCP_SIGNATURE #include support for RFC 2385
device crypto
device cryptodev
There is a PR but I don't know if it is still true ?
https://lists.freebsd.org/pipermail/freebsd-ports-bugs/2013-December/267545.html
Thanks, regards
More information about the freebsd-net
mailing list