Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
495
Views
0
Helpful
1
Replies

BGP - NAT and MD5

lmanavalan
Level 1
Level 1

‎09-14-2014 06:20 PM - edited ‎03-04-2019 11:45 PM

Hi

In my senario i have BGP configured between two routers. i have mutihop configured in this BGP because it going through a firewall passing through a VPN tunnel at the other end its comes of the VPN tunnel and forms the neighbors. Its all working.

But, for some reason i need to change the update-source IP address at site A. so in my configuration the local IP is nated on the firewall before entering the VPN tunnel. (i dont have permision to do any IP changes at Site B BGP configuration)

My issue is because i configured the MD5 password for BGP authentication the BGP status is Active but, when i remove the password at both end the BGP is forming Neighbhors.

Why does MD5 not working via the NATed configuration. Is it using the local IP address ( not the nated address) of the BGP configuration for MD5 authentidation which is not recogonised at the other end.

 

Thanks in advance

Logesh.

Labels:
0 Helpful
1 Reply 1

milan.kulik
Level 10
Level 10

‎09-15-2014 12:40 AM

Hi, which FW are you using? Read below discussing for ASA and Checkpoint FWs: http://ieoc.com/forums/p/3889/12428.aspx http://www.costiser.ro/2013/03/31/bgp-md5-authentication/ https://www.fir3net.com/Firewalls/Check-Point/bgp.html Best regards, Milan
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card