Date: Thu, 26 May 2005 17:32:27 +0100 From: Lee Johnston <lee@wildcard.net.uk> To: Kris Kennaway <kris@obsecurity.org> Cc: freebsd-net@freebsd.org Subject: Re: FreeBSD 5.4 - TCP MD5 Message-ID: <6.1.0.6.0.20050526173136.01bb5bd8@mail.wildcardinternet.co.uk> In-Reply-To: <20050526162736.GA51533@xor.obsecurity.org> References: <6.1.0.6.0.20050526171734.01a4a908@mail.wildcardinternet.co.uk> <20050526162736.GA51533@xor.obsecurity.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi Kris, Thanks for your reply.. I've checked /usr/src/sys/i386/conf/NOTES but can't see any mention of the options anymore.. Any other ideas? Regards, Lee. At 17:27 26/05/2005, Kris Kennaway wrote: >On Thu, May 26, 2005 at 05:22:47PM +0100, Lee Johnston wrote: > > Hi, > > > > I'm trying to configure a 5.4 box with Quagga to support TCP MD5 > Passwords. > > I've achieved this previously with 4.10, but when I try to add the > > following kernel options, 5.4 doesn't like it: > > > > options FAST_IPSEC > > options crypto > > options TCP_MD5 > > > > config gives: > > VENUS: unknown option "TCP_MD5" > > > > > > I have this in /etc/ipsec.conf > > > > add 192.168.1.1 192.168.1.2 tcp 0x1000 -A tcp-md5 "[password]"; > > > > setkey -f /etc/ipsec.conf gives: > > pfkey_open: Protocol not supported > > > > > > What is the correct way for enabling TCP MD5 signatures on 5.4? > >When in doubt, check the two NOTES files. > >Kris -- Lee @ Wildcard Internet t: (0845) 165 1510 f: (0845) 165 1511 m: (07795) 423 617 e: lee@wildcard.net.uk Web Development - Domains - Hosting - Co-location - Dedicated Servers
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6.1.0.6.0.20050526173136.01bb5bd8>