Date: Thu, 26 May 2005 09:27:37 -0700 From: Kris Kennaway <kris@obsecurity.org> To: Lee Johnston <lee@wildcard.net.uk> Cc: freebsd-net@freebsd.org Subject: Re: FreeBSD 5.4 - TCP MD5 Message-ID: <20050526162736.GA51533@xor.obsecurity.org> In-Reply-To: <6.1.0.6.0.20050526171734.01a4a908@mail.wildcardinternet.co.uk> References: <6.1.0.6.0.20050526171734.01a4a908@mail.wildcardinternet.co.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
--1yeeQ81UyVL57Vl7 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, May 26, 2005 at 05:22:47PM +0100, Lee Johnston wrote: > Hi, >=20 > I'm trying to configure a 5.4 box with Quagga to support TCP MD5 Password= s.=20 > I've achieved this previously with 4.10, but when I try to add the=20 > following kernel options, 5.4 doesn't like it: >=20 > options FAST_IPSEC > options crypto > options TCP_MD5 >=20 > config gives: > VENUS: unknown option "TCP_MD5" >=20 >=20 > I have this in /etc/ipsec.conf >=20 > add 192.168.1.1 192.168.1.2 tcp 0x1000 -A tcp-md5 "[password]"; >=20 > setkey -f /etc/ipsec.conf gives: > pfkey_open: Protocol not supported >=20 >=20 > What is the correct way for enabling TCP MD5 signatures on 5.4? When in doubt, check the two NOTES files. Kris --1yeeQ81UyVL57Vl7 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (FreeBSD) iD8DBQFClfj4Wry0BWjoQKURAq4fAJwPuY68zocDCyL3XPDrNaD0+x7vJgCeP02C kMC0fjTiCOrx5tsjBZaG/GE= =RWCH -----END PGP SIGNATURE----- --1yeeQ81UyVL57Vl7--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050526162736.GA51533>