Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Create a new article
6668
Views
0
Helpful
0
Comments

Quick Reference on BGP Pass through

athukral
Level 1
Level 1

‎03-19-2012 10:45 PM - edited ‎03-08-2019 06:44 PM

 

 

Introduction

 

This document is a quick reference to configure BGP pass through Firewall device.

 

Prerequisites

 

 

 

Routers and ASA

 

 

 

Concept

 

As we all know that ASA do port  randomization whenever traffic traverses through ASA, that is why BGP  does not work through the ASA. Hence, we need to do appropriate  configuration on ASA so that bgp traffic can traverse through ASA.

 

 

Network   Diagram

bgp.JPG

 

 

 

Configuration Sample

 

 

access-list outside permit tcp host 1.1.1.1 host 2.2.2.2 eq bgp

tcp-map bgp

tcp-options range 19 19 allow

 

class-map bgp

match port tcp eq bgp

 

policy-map global_policy

class bgp (where bgp is class name )

set connection random-sequence-number disable

set connection advanced-options bgp (where bgp is tcp-map name)

 

 

 

Related   Information

 

http://www.cisco.com/en/US/tech/tk365/technologies_configuration_example09186a008009487d.shtml

 

https://supportforums.cisco.com/docs/DOC-21347

Labels:
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents