I'm curious why I need to enable MD5 because in my system I don't use any authentication method. Is there any way to off the parameter. Also I notice that vlan in FreeBSD is not fully trunk. Examples ; vlan 1000 : 192.168.0.1/26 connect to L2 switch and untag certain port to connect to PC. I still can use internet when I set that PC to use this IP; IP = 192.168.0.5/24 Gateway = 192.168.0.1/24 Is there any options that I need to put in kernel to prevent thing like this happen. On 4/3/06, Thomas <freebsdlists_at_bsdunix.ch> wrote: > > Am Montag, den 03.04.2006, 16:26 +0800 schrieb Nik: > > Hi all, > > > > I got four FreeBSD router and two of them using FreeBSD 6.1 Prerelease > and > > quagga 0.99.3 and the other two is using FreeBSD 5.4 with quagga 0.98.5. > I > > try to implement IBGP session in this 4 router and I encounter this > problem > > when activate the IBGP; > > > > Info: > > 1) Two router is a Core - each has different version of OS and Quagga > > 2) Two router is a Distribution -each has different version of OS and > Quagga > > > > BGP: can't set sockopt TCP_MD5SIG 0 to socket 16 > > BGP: can't set sockopt TCP_MD5SIG 0 to socket 15 > > BGP: can't set sockopt TCP_MD5SIG 0 to socket 18 > > > > FYI, I've already compile quagga with MD5 patch for BGP. Thanks a lot. > > Use this kernel options: > # quagga needs this for MD5 passwords on BGP sessions > options TCP_SIGNATURE > options FAST_IPSEC > device crypto > device cryptodev > > Regards, > Thomas > > PS: This is a question for freebsd-net_at_ rather than current_at_ > > > _______________________________________________ > > freebsd-current_at_freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-current > > To unsubscribe, send any mail to " > freebsd-current-unsubscribe_at_freebsd.org" > >Received on Mon Apr 03 2006 - 07:55:59 UTC
This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:38:54 UTC