[29982] in North American Network Operators' Group
Re: MD5 in BGP4
daemon@ATHENA.MIT.EDU (Damon M. Conway)
Wed Jul 12 11:13:46 2000
Message-Id: <200007121511.KAA56338@chiba.3jane.net>
To: "HANSEN CHAN" <hansen.chan@alcatel.com>
Cc: nanog@merit.edu
In-reply-to: <396C640F.B02C5C3E@newbridge.com>
Date: Wed, 12 Jul 2000 10:11:21 -0500
From: "Damon M. Conway" <damon@chiba.3jane.net>
Errors-To: owner-nanog-outgoing@merit.edu
"HANSEN CHAN" wrote:
>I understand that MD5 is quite commonly used in IGP such as OSPF but not
>in BGP4. Am I correct? Can someone explain to me why? Shouldn't one be
>more concerned the session being hijacked when talking to another
>network?
i believe this is because bgp will not establish a session unless the other
end is directly connected. hence the reason for ebgp-multihop. so unless
somebody drops a physical line into your router and configures it, you
shouldn't have a problem.
at least that's the way i understand it. please correct me if i'm wrong.
damon
