BGP through PIX Question

From: Lab Rat #109385382 (techlist01@gmail.com)
Date: Sat Dec 09 2006 - 02:46:11 ART

• Next message: Marcus Lasarko: "Re: ARP Scenario Question"
• Previous message: Tony Schaffran: "RE: CCIE R&S written exam study guides"
• Next in thread: Marcus Lasarko: "Re: BGP through PIX Question"
• Maybe reply: Marcus Lasarko: "Re: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Kal Han: "Re: BGP through PIX Question"
• Maybe reply: Petr Lapukhov: "Re: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Petr Lapukhov: "Re: BGP through PIX Question"
• Maybe reply: Nick Griffin: "Re: BGP through PIX Question"
• Maybe reply: Ross Filipek: "Re: BGP through PIX Question"
• Maybe reply: Lab Rat #109385382: "RE: BGP through PIX Question"
• Maybe reply: christianus sandjaja: "Re: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Lab Rat #109385382: "RE: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Lab Rat #109385382: "RE: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Lab Rat #109385382: "RE: BGP through PIX Question"
• Maybe reply: Kal Han: "Re: BGP through PIX Question"
• Maybe reply: Lab Rat #109385382: "RE: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Kal Han: "Re: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Kal Han: "Re: BGP through PIX Question"
• Maybe reply: Kal Han: "Re: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Lab Rat #109385382: "RE: BGP through PIX Question"
• Maybe reply: Petr Lapukhov: "Re: BGP through PIX Question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

If I had a requirement to only allow a router inside of a PIX initiate a BGP
connection to a router outside of the PIX, what could some of the
possibilities be?

I'm trying to determine where the controls should be, as well. I know there
are certain things a router can do to initiate a BGP session and I know that
the PIX can control who begins what, as well...

So, I'm thinking one of the following:

1. Set inside router with lower BGP router-id than the outside router
2. Use Policy NAT on the PIX (e.g. nat (inside) 1 access-list XX)

I guess from a lab perspective, I'm trying to determine the best
practice...anyone have thoughts?

Thanks,

Ed

• Next message: Marcus Lasarko: "Re: ARP Scenario Question"
• Previous message: Tony Schaffran: "RE: CCIE R&S written exam study guides"
• Next in thread: Marcus Lasarko: "Re: BGP through PIX Question"
• Maybe reply: Marcus Lasarko: "Re: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Kal Han: "Re: BGP through PIX Question"
• Maybe reply: Petr Lapukhov: "Re: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Petr Lapukhov: "Re: BGP through PIX Question"
• Maybe reply: Nick Griffin: "Re: BGP through PIX Question"
• Maybe reply: Ross Filipek: "Re: BGP through PIX Question"
• Maybe reply: Lab Rat #109385382: "RE: BGP through PIX Question"
• Maybe reply: christianus sandjaja: "Re: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Lab Rat #109385382: "RE: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Lab Rat #109385382: "RE: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Lab Rat #109385382: "RE: BGP through PIX Question"
• Maybe reply: Kal Han: "Re: BGP through PIX Question"
• Maybe reply: Lab Rat #109385382: "RE: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Kal Han: "Re: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Kal Han: "Re: BGP through PIX Question"
• Maybe reply: Kal Han: "Re: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Jens Petter: "RE: BGP through PIX Question"
• Maybe reply: Lab Rat #109385382: "RE: BGP through PIX Question"
• Maybe reply: Petr Lapukhov: "Re: BGP through PIX Question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Tue Jan 02 2007 - 07:50:37 ART