You need to clarify if you're running BGP on the firewall as well. If you
are, quit it. If not, then your BGP peers will need to communicate through
the firewall, so yes, you will need to allow them TCP access to each other.
As for someone probing your firewall to see if you are doing BGP trough it,
that's a moot point since it will only be opened to the other BGP speaking
router. Anyone scanning from the outside would see that port as being closed.
Mike
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=14610&t=14286
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
