Date: Wed, 28 Feb 2018 17:21:16 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-net@FreeBSD.org Subject: [Bug 223835] BGP session not established with md5 password via FRRouting Message-ID: <bug-223835-2472-NsnbJvyI2z@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-223835-2472@https.bugs.freebsd.org/bugzilla/> References: <bug-223835-2472@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D223835 --- Comment #34 from Andrey V. Elsukov <ae@FreeBSD.org> --- > (In reply to Felipe N. Oliva from comment #31) > > netstat -sp tcp | grep sig > > 0 packets with matching signature received > > 0 packets with bad signature received > > 0 times failed to make signature due to no SA > > 0 times unexpected signature received > > 0 times no signature provided by segment >=20 > It seems there were not any attempt to use TCP-MD5, probably you need to > properly configure your BGP daemon.=20 >=20 When application wants to use TCP-MD5 signatures, it uses TCP_MD5SIG socket option to enable this feature. When socket has enabled this feature and no = SAs are presents, or option is enabled and TCP segments have not such option th= ere will be some counters incremented. In your case application did not enable = this socket option, this is why I think about wrong configuration. --=20 You are receiving this mail because: You are on the CC list for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-223835-2472-NsnbJvyI2z>