From: Brian Dennis (bdennis@internetworkexpert.com)
Date: Thu Sep 04 2003 - 17:42:02 GMT-3
That is because BGP isn't its own IP protocol like EIGRP (IP Protocol
88) or OSPF (IP Protocol 89) are. BGP uses TCP (IP Protocol 6) for
transport. Your ACL should look like this:
ip access-list extended ibf
permit tcp any any eq bgp
permit tcp any eq bgp any
evaluate tcptraffic
Brian Dennis, CCIE #2210 (R&S/ISP-Dial/Security)
bdennis@internetworkexpert.com
Toll Free: 877-334-8987
Direct: 775-745-6404 (Outside the US and Canada)
Internetwork Expert, Inc.
http://www.InternetworkExpert.com
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Charles T. Alexander
Sent: Thursday, September 04, 2003 1:27 PM
To: ccielab@groupstudy.com
Subject: Reflexive Lists and BGP
Can't add
permit bgp any any
to access list below along with ospf. Running 12.2 on a 2500. Cisco
example show it, but it doesn't seem to be an option.
interface Ethernet0
ip address 172.29.12.2 255.255.255.192
ip access-group ibf in
ip access-group obf out
ip access-list extended ibf
permit ospf any any
evaluate tcptraffic
ip access-list extended obf
permit tcp any any reflect tcptraffic
permit ip any any
This archive was generated by hypermail 2.1.4 : Wed Oct 01 2003 - 07:24:23 GMT-3