From owner-freebsd-questions@FreeBSD.ORG  Thu Dec  7 15:45:40 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 8BFC016A506
	for <freebsd-questions@freebsd.org>;
	Thu,  7 Dec 2006 15:45:40 +0000 (UTC) (envelope-from freak@volia.net)
Received: from relay1.volia.net (relay1.volia.net [82.144.192.40])
	by mx1.FreeBSD.org (Postfix) with ESMTP id B3C7C43EBC
	for <freebsd-questions@freebsd.org>;
	Thu,  7 Dec 2006 15:39:49 +0000 (GMT) (envelope-from freak@volia.net)
Received: from [127.0.0.1] (freak.volia.net [82.144.192.54])
	by relay1.volia.net (8.13.8/8.13.8) with ESMTP id kB7FeUmI023485
	for <freebsd-questions@freebsd.org>;
	Thu, 7 Dec 2006 17:40:33 +0200 (EET) (envelope-from freak@volia.net)
Message-ID: <45783615.3030100@volia.net>
Date: Thu, 07 Dec 2006 17:41:09 +0200
From: Sergey Alexanov <freak@volia.net>
Organization: Volia ISP
User-Agent: Mozilla Thunderbird 1.0.7 (Windows/20050923)
X-Accept-Language: ru-ru, ru
MIME-Version: 1.0
To: freebsd-questions@freebsd.org
Content-Type: text/plain; charset=KOI8-R; format=flowed
Content-Transfer-Encoding: 7bit
X-Spam-Status: No, score=-135.5 required=5.0 tests=ALL_TRUSTED,AWL,BAYES_00,
	USER_IN_WHITELIST autolearn=ham version=3.1.4
X-Spam-Checker-Version: SpamAssassin 3.1.4 (2006-07-25) on tower.volia.net
Subject: Openbgpd TCP-MD5
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: freak@volia.net
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Dec 2006 15:45:40 -0000

Hello,

Seemingly like you don't have rfc 2385 support in your kernel

from /usr/src/sys/conf/NOTES :

# TCP_SIGNATURE adds support for RFC 2385 (TCP-MD5) digests. These are
# carried in TCP option 19. This option is commonly used to protect
# TCP sessions (e.g. BGP) where IPSEC is not available nor desirable.
# This is enabled on a per-socket basis using the TCP_MD5SIG socket option.
# This requires the use of 'device crypto', 'options FAST_IPSEC' or 'options
# IPSEC', and 'device cryptodev'.
#options        TCP_SIGNATURE           #include support for RFC 2385


Regards,

-- 
Sergey Alexanov
SA1215-RIPE
freak@volia.net