DragonFly kernel List (threaded) for 2010-08
[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index][Thread Index]

Re: TCP‐MD5 (rfc2385) implementation in DragonFlyBSD

From:	Alex Hornung <ahornung@xxxxxxxxx>
Date:	Sat, 21 Aug 2010 14:05:32 +0100

 On 20/08/2010 14:50, David BÉRARD wrote:
> Hi Kernel list,
>
> I run DragonFlyBSD on a gateway with the Quagga routing suite. I have
> to setup
> BGP session with session password.
> BGP session with password use TCP_MD5 (rfc2385) to setup "secure" session.
> In FreeBSD I use the IPSec stack to do this :
>     in /etc/ipsec.conf
>     add Y.Y.Y.Y X.X.X.X tcp 0x1000 -A tcp-md5 "my_password";
>
> setkey in DragonFlyBSD doesn't seem to support tcp-md5, is there another
> implementation or it's not implemented in DragonFlyBSD ?
>
> Best regards,
This is definitely not my expertise, but it seems, from looking at our
code, that we don't currently support tcp-md5 in kernel, and that's why
setkey doesn't accept it either.

Cheers,
Alex Hornung

References:
- TCP‐MD5 (rfc2385) implementation in DragonFlyBSD
  - From: David BÉRARD <david@nfrance.com>

[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index][Thread Index]