OSPF key expire rules violates RFC 2293?
Ondrej Zajicek
santiago at crfreenet.org
Fri Sep 27 11:59:52 CEST 2019
On Thu, Sep 26, 2019 at 03:47:39PM +0000, Kenth Eriksson wrote:
> Hi!
>
> When an OSPF key lifetime expires then bird stops using that key. E.g.
> if the configured parameter "generate from time" expires, then bird
> reverts to an OSPF interface in unauthenticated mode.
>
> Is this intentional? Or is it something that can be configured? I think
> it is not according to the RFC. In appendix D of RFC 2293, the
> following is stated;
Hi
You are right (although it does not revert to unauthenticated mode, it
sends packets marked as authenticated, with zeroed hash). I think it is
oversight.
--
Elen sila lumenn' omentielvo
Ondrej 'Santiago' Zajicek (email: santiago at crfreenet.org)
OpenPGP encrypted e-mails preferred (KeyID 0x11DEADC3, wwwkeys.pgp.net)
"To err is human -- to blame it on a computer is even more so."
More information about the Bird-users
mailing list