Date: Sun, 01 Sep 2013 23:25:13 +0300 From: "Vladislav V. Prodan" <universite@ukr.net> To: freebsd-net@freebsd.org Cc: =?UTF-8?B?RXJtYWwgTHXDp2k=?= <eri@freebsd.org> Subject: Re: Quagga not support password for neighbor Message-ID: <5223A2A9.8030602@ukr.net> In-Reply-To: <CAPBZQG1UoFv2xhM03LnTATC%2B05c-iFg%2B8CACOcVLKWY1GuGVGg@mail.gmail.com> References: <66067.1363878392.12938546996697300992@ffe17.ukr.net> <CAPBZQG1UoFv2xhM03LnTATC%2B05c-iFg%2B8CACOcVLKWY1GuGVGg@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Up. You can set examples? I added these options in my kernel and rebuild: options TCP_SIGNATURE options IPSEC device crypto device cryptodev ... I added these lines to /etc/rc.conf: ... ipsec_enable="YES" ipsec_file="/etc/ipsec.conf" ... and /etc/ipsec.conf output: flush; add ZZZ.245.YYY.67 ZZZ.245.YYY.1 tcp 0x1000 -A tcp-md5 "XXXXXXXX"; add ZZZ.245.YYY.67 ZZZ.245.YYY.2 tcp 0x1000 -A tcp-md5 "XXXXXXXX"; add ZZZ.107.YYY.12 ZZZ.107.YYY.1 tcp 0x1000 -A tcp-md5 "XXXXXXXX"; add ZZZ.107.YYY.12 ZZZ.107.YYY.199 tcp 0x1000 -A tcp-md5 "XXXXXXXX"; 21.03.2013 17:52, Ermal Luçi wrote: > You need a kernel with TCP_SIGNATURE option and insert policy routes with > setkey. > > > On Thu, Mar 21, 2013 at 4:06 PM, Vladislav Prodan <universite@ukr.net>wrote: > >> >> FreeBSD 8.2-STABLE >> quagga-0.99.21 Free RIPv1, RIPv2, OSPFv2, BGP4, IS-IS route software >> >> BGP.as11111(config-router)# neighbor XXX.XXX.YYY.YYY password testtest >> % Error while applying TCP-Sig to session(s) >> >> No one to share the patch with the Linux version of quagga, so get to work >> option password? >> >> Thanks! >> -- Vladislav V. Prodan System & Network Administrator http://support.od.ua +380 67 4584408, +380 99 4060508 VVP88-RIPE
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5223A2A9.8030602>