OPNsense Forum
Archive => 18.1 Legacy Series => Topic started by: Foss on February 28, 2018, 12:24:20 pm
-
Hi,
Installed FRR through the GUI and have setup my BGP neighbor settings towards my ISP, but they require md5 password configuration which is not available in the GUI..
I have tried setting the password through CLI, and the configurations looks to be correct, but it doesnt seem to activate, and the GUI keeps overwriting any setting i make in the CLI...
Please let me know I need to do something specific to allow CLI configuration while still having the GUI usage, or if you have any plans to make BGP Password support in the GUI ?
For testing I asked my ISP to remove the password requirement for testing, and the BGP peering came online and worked as intended.. So I need someway to setup BGP password support to get online..
Thanks
/Foss
-
I'm not sure but this can be related to FreeBSD 11.1 kernel.
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=223835
https://redmine.pfsense.org/issues/7969
-
Thanks for this update, it makes sense that the issue is related.
Seems like their is a working patch for freebsd.. mentioned in that thread, but for my setup I will try to convince my ISP that password is not needed for this peering ;)
-
Yep, there are firewall rules to strentghen the security :)
-
The patch was added to our repository as well, currently missing a test build.... But in theory anybody could do it.
https://github.com/opnsense/src/commit/6b6b6936
Cheers,
Franco
-
I Succeeded in convincing my provider password wasn't needed, thanks again for the quick reponse!!
In regards to the GUI overwriting any changes made in the CLI - I suspect this is expected behavior.. is their any workaround to make CLI changes permanent ?
Thanks
-
This will only work when you delete the plugin and install frr just as a pkg via CLI.
Or you tell me what options you need and I try to implement them