From: kasturi cisco (kasturi_cisco@hotmail.com)
Date: Mon Aug 16 2004 - 16:29:35 GMT-3
Hi,
I think the reason they do this to be sure that TCP connection is not
dropped whichever device starts the BGP session. As per the std i think
both will start the TCP connection and one with higher IP address finally
establishes the connection (see RFC and connection collision section).
Now if we are sure then we can permit it in one way (from higher IP
address to lower IP) else to be sure permitting the TCP connection in
both ways is better.I don't think they will penalize us for this.
In ur example the TCP session would be set up from outside to inside and
the Inbound acl will allow the session to be established.
HTH. Someone correct me if needed.
Good Luck,
Kasturi.
------------------------------------------------------------------------
Marriage? Join BharatMatrimony.com for free.
This archive was generated by hypermail 2.1.4 : Fri Sep 03 2004 - 07:02:44 GMT-3