Hello! I have cisco with following config: router ospf 1 area 0 authentication message-digest ..... interface Fa 0/0 ip ospf message-digest-key 10 md5 .... I installed bird 1.0.11 on machine with linux 2.4.31 and wrote following in config: interface "eth0" { type broadcast; authentication cryptographic; password "pass"; }; And I get : Nov 26 12:09:19 vpn_22_203 bird: Bad OSPF packet from 192.168.22.253 - authentification failed Doesn it mean that bird doesn't support authentication message-digest? Thank you!
Hi Dmitry, I had also the same problem with a cisco 4000. After sniffing around, I found that in cisco generated packets there is a field with improper value. According to the official protocol (RFC2328 page 229) the 16-bin field just before the key ID should be filled with zeros, whereas in cisco generated packets is not. This bug (as it seems) could have been very well corrected in newer versions of IOS, since I'm using a quite old version of IOS for my tests. I would be glad if you could check weather this is the cause of your problem in you case. I attach the sniffer's logs for the curious. regards, Stergiakis Alexandros al_ex Dmitry Melekhov wrote:
Hello!
I have cisco with following config:
router ospf 1 area 0 authentication message-digest .....
interface Fa 0/0 ip ospf message-digest-key 10 md5 ....
I installed bird 1.0.11 on machine with linux 2.4.31 and wrote following in config:
interface "eth0" { type broadcast; authentication cryptographic; password "pass"; };
And I get :
Nov 26 12:09:19 vpn_22_203 bird: Bad OSPF packet from 192.168.22.253 - authentification failed
Doesn it mean that bird doesn't support authentication message-digest?
Thank you!
____________________________________________________________________ http://www.freemail.gr - ДЫЯЕэМ УПГЯЕСъА ГКЕЙТЯОМИЙОЩ ТАВУДЯОЛЕъОУ. http://www.freemail.gr - free email service for the Greek-speaking.
participants (2)
-
Alexandros Stergiakis -
Dmitry Melekhov