On Tue, Mar 25, 2014 at 04:04:31PM +0200, Alexander Shikov wrote:
Ondrej mentioned: "If any BGP proto sets 'password', MD5 auth on listening socket is enabled. It seems that new socket (for accepted TCP connection) inherits the MD5 auth even when there is no appropriate SA. It may be a change of behavior in newer FreeBSDs, as the code worked on FreeBSD in the past AFAIK."
Now I have a question to community: does anyone have bird installation with selective authentication of BGP peers on same interface? Does it work for Linux-like systems or it is FreeBSD-specific issue?
I am sure it is a BSD-specific issue, on Linux it works fine. -- Elen sila lumenn' omentielvo Ondrej 'SanTiago' Zajicek (email: santiago@crfreenet.org) OpenPGP encrypted e-mails preferred (KeyID 0x11DEADC3, wwwkeys.pgp.net) "To err is human -- to blame it on a computer is even more so."