1.2.3 RC1 + BGP + MD5 = no kernel support for PF_KEY ?
-
Hello,
I'm testing OpenBGPD with pfSense because we are looking to migrate from our OpenBSD routers to pfSense based routers. I installed the OpenBGPD package (0.4) from the package manager. Our neighbor routers use an MD5 signature password. I noticed that in the web GUI for OpenBGPD there is a place for both a Signature Password and a Signature Key. However, when attempting to start OpenBGPD it fails to connect to the neighbor router and logs this in the System Log:
bgpd[12226]: no kernel support for PF_KEY
Are MD5 passwords for BGP not supported in pfSense? And if that is the case then why have the option to specify an MD5 password or key in the web GUI?
Thanks,
-Chris -
Did you have any luck with this?
I am running pfSense 1.2, and transitioning to 1.2.2, and we now need to run BGP instead of static routes, ASAP.
User52
-
There is no MD5 support when used with FreeBSD so that's not possible yet.
-
Sorry, is it FreeBSD limitation? is anybody working on this?
Thanks.