Buy or Renew
Buy or Renew
Join the Catalyst Center Onboarding Ask Me Anything event happening now!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
634
Views
0
Helpful
4
Replies

Firewall tries to close a BGP/TCP connection with switch

FNL
Level 1
Level 1

‎06-02-2022 07:04 AM - edited ‎06-02-2022 07:11 AM

Hi,

 

  The following problem involves a firewall (10.249.0.13) wanting to close a BGP connection with its neighboring switch (10.249.0.14).

 

The switch answers with a BGP NOTIFICATION message that contains "No supported AFI/SAFI". (separate issue) The firewall then sends a FIN to the switch to close the TCP connection. Follows a series of FIN retransmissions from the firewall and ACK retransmissions from the switch.

 

Is there a way to determine which side is not understanding here?

I have included an excerpt of the .pcap.

 

Thanks

Labels:
Preview file
333 KB
0 Helpful
4 Replies 4

MHM Cisco World
VIP
VIP

‎06-02-2022 07:06 AM

are you config FW to bypass BGP or it BGP peer?

0 Helpful

FNL
Level 1
Level 1
In response to MHM Cisco World

‎06-02-2022 09:34 AM

No we're not.

0 Helpful

MHM Cisco World
VIP
VIP

‎06-02-2022 07:32 AM

anyway check this bug

https://quickview.cloudapps.cisco.com/quickview/bug/CSCvo58924

0 Helpful

FNL
Level 1
Level 1
In response to MHM Cisco World

‎06-02-2022 09:35 AM

Thanks a lot for the link, I will check that out.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card