[toc:faq]
Introduction
This document is a quick reference to configure BGP pass through Firewall device.
Concept:
As we all know that ASA do port randomization whenever traffic traverses through ASA, that is why BGP does not work through the ASA. Hence, we need to do appropriate configuration on ASA so that bgp traffic can traverse through ASA.
Prequisite:
Routers and ASA
Network Diagram
Configuration
access-list outside permit tcp host 1.1.1.1 host 2.2.2.2 eq bgp
tcp-map bgp
tcp-options range 19 19 allow
class-map bgp
match port tcp eq bgp
policy-map global_policy
class bgp (where bgp is class name )
set connection random-sequence-number disable
set connection advanced-options bgp (where bgp is tcp-map name)
I hope this quick document is helpful to you and i want to thank you for your time.
.
Verify
show service-policy
Related Information
http://www.cisco.com/en/US/tech/tk365/technologies_configuration_example09186a008009487d.shtml