[quagga-dev 8030] Re: OSPF / IPsec

Greg Troxel gdt at ir.bbn.com
Sun Jun 13 13:56:13 BST 2010


David Lamparter <equinox at diac24.net> writes:

> Hi Thomas,
>
>
>> I would like to connect my quagga with a cisco asa firwall using an
>> ipsec (in tunnel mode) and OSPF. Is it possible to tell quagga to call a
>> script each time it updates a route in order to add delete the security
>> associations?
>
> Quagga doesn't have that feature, but if you're using Linux you can use
> rtnetlink notifications to get a bump from the kernel when routes change
> (cf. "ip monitor"). FreeBSD has a similar facility, I think it was
> somewhere in route sockets or something.

On BSD (all - it's from 4.4), "route -n monitor" will do most of what
you want, printing out everything from the routing socket.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 194 bytes
Desc: not available
URL: <http://lists.quagga.net/pipermail/quagga-dev/attachments/20100613/05586f2b/attachment-0001.sig>


More information about the Quagga-dev mailing list