authentication message-digest ?

Alexandros Stergiakis alsterg at freemail.gr
Mon Nov 28 19:00:14 CET 2005 

Hi Dmitry,

I had also the same problem with a cisco 4000. After sniffing around, I 
  found that in cisco generated packets there is a field with improper 
value. According to the official protocol (RFC2328 page 229) the 16-bin 
field just before the key ID should be filled with zeros, whereas in 
cisco generated packets is not.

This bug (as it seems) could have been very well corrected in newer 
versions of IOS, since I'm using a quite old version of IOS for my 
tests. I would be glad if you could check weather this is the cause of 
your problem in you case.

I attach the sniffer's logs for the curious.

regards,
   Stergiakis Alexandros
   al_ex


Dmitry Melekhov wrote:
> Hello!
>  
> I have cisco with following config:
>  
> router ospf 1
> area 0 authentication message-digest
> .....
>  
> interface Fa 0/0
> ip ospf message-digest-key 10 md5 ....
>  
> I installed bird 1.0.11 on machine with linux 2.4.31 and wrote following 
> in config:
>  
>         interface "eth0" {
>                 type broadcast;
>                   authentication cryptographic;
>                   password "pass";
>        };
> 
>  
> And I get :
>  
> Nov 26 12:09:19 vpn_22_203 bird: Bad OSPF packet from 192.168.22.253 - 
> authentification failed
>  
> Doesn it mean that bird doesn't support authentication message-digest?
>  
> Thank you!
>  


____________________________________________________________________
http://www.freemail.gr - ДЫЯЕэМ УПГЯЕСъА ГКЕЙТЯОМИЙОЩ ТАВУДЯОЛЕъОУ.
http://www.freemail.gr - free email service for the Greek-speaking.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Cisco_OSPF_md5_bug
Type: application/octet-stream
Size: 320 bytes
Desc: not available
URL: <http://trubka.network.cz/pipermail/bird-users/attachments/20051128/650c71e1/attachment-0002.obj>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Cisco_OSPF_md5_ok
Type: application/octet-stream
Size: 3081 bytes
Desc: not available
URL: <http://trubka.network.cz/pipermail/bird-users/attachments/20051128/650c71e1/attachment-0003.obj>

More information about the Bird-users mailing list