Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4114
Views
10
Helpful
4
Replies

BGP in cluster FTD

Go to solution
DavideRanalli76560
Level 1
Level 1

‎02-05-2021 09:34 AM

Hi all, shortly have to RUN BGP a couple of FTD 4115 in HA, managed by a 1600 FMC, it's all on premises. I was wondering about the BGP sessions if they have to be established according to which of the following cases:

1) one router peers with both active and passive FTD.

Tanto.PNG

 

2) router peering is as per image below

Poco.PNG

 

3) router peering is as per image below

nada.PNG

Any insight would be very much appreciated

 

Davide

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP

‎02-05-2021 09:41 AM

Hi @DavideRanalli76560

Option 3 would be correct.

 

Only the Active unit listens on TCP port 179 for BGP connections from peers. The Standby unit does not participate in BGP peering, and hence does not listen on TCP port 179 and does not maintain the BGP tables. BGP route additions and deletions are replicated from the Active to the Standby unit. Upon failover, the new Active unit listens on TCP port 179 and initiates the BGP adjacency establishment with peers.

View solution in original post

4 Replies 4

Go to solution
Rob Ingram
VIP
VIP

‎02-05-2021 09:41 AM

Hi @DavideRanalli76560

Option 3 would be correct.

 

Only the Active unit listens on TCP port 179 for BGP connections from peers. The Standby unit does not participate in BGP peering, and hence does not listen on TCP port 179 and does not maintain the BGP tables. BGP route additions and deletions are replicated from the Active to the Standby unit. Upon failover, the new Active unit listens on TCP port 179 and initiates the BGP adjacency establishment with peers.

Go to solution
DavideRanalli76560
Level 1
Level 1
In response to Rob Ingram

‎02-05-2021 10:32 AM

 

from this documentation (Page 38) looks like is not like this

https://www.ciscolive.com/c/dam/r/ciscolive/emea/docs/2020/pdf/BRKSEC-3032.pdf

 

Each member forms independent adjacencies in Individual mode
• Same protocols as in Spanned Etherchannel, but multicast data is centralized
• Higher overall processing impact from maintaining separate routing tables
• Slower external convergence on any member failure

 

 

0 Helpful

Go to solution
Rob Ingram
VIP
VIP

‎02-05-2021 10:51 AM

Sorry I assumed when you meant HA that you were referring to Active/Standby, not clustering.

In which case each FTD member establishes adjacencies, as you've noted from that CL doc.

Go to solution
DavideRanalli76560
Level 1
Level 1
In response to Rob Ingram

‎02-05-2021 11:05 AM

My bad, I didn't get the document right, actually I should apologize, I am doing HA, your first answer answered perfectly what I first asked.

 

Thanks very much for your precious help

 

Davide

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card