[c-nsp] Cisco Guard and loopback
Michael McCormack
mmccormack at dataelec.com
Fri Feb 24 08:27:12 EST 2006
Hi Sven
Sorry but that was actually a typo the remote as is in fact 100 on the
cisco guard
We have tried this router to router and it works as expected but the
guard seem have a difficulty with the th loopback address
Router 1
interface Loopback0
ip address 10.10.10.1 255.255.255.255
interface f0/0
ip address 192.168.1.1 255.255.255.224
no shut
router bgp 100
bgp log-neighbor-changes
neighbor 10.10.10.2 remote-as 200
neighbor 10.10.10.2 ebgp-multihop 2
neighbor 10.10.10.2 update-source Loopback0
ip classless
ip route 10.10.10.2 255.255.255.255 192.168.1.2
Cisco Guard
interface Loopback0
ip address 10.10.10.2 255.255.255.255
interface f0/0
ip address 192.168.1.2 255.255.255.224
no shut
router bgp 200
bgp log-neighbor-changes
neighbor 10.10.10.1 remote-as 100
neighbor 10.10.10.1 ebgp-multihop 2
neighbor 10.10.10.1 update-source Loopback0
!
ip classless
ip route 10.10.10.1 255.255.255.255 192.168.1.1
-----Original Message-----
From: sven at mx02.huster.me.uk [mailto:sven at mx02.huster.me.uk] On Behalf
Of Sven Huster
Sent: 24 February 2006 13:23
To: Michael McCormack
Cc: cisco-nsp at puck.nether.net
Subject: Re: [c-nsp] Cisco Guard and loopback
* Michael McCormack <mmccormack at dataelec.com> [2006-02-24 13:18:41
-0000]:
> We are trying to set up eBGP peering between a test router and Cisco
> Guard using loopback addresss and the following simple config
>
...
> router bgp 100
...
> neighbor 10.10.10.2 remote-as 200
...
> router bgp 200
...
> neighbor 10.10.10.1 remote-as 200
Both with remote-as 200 but one actually AS100
Cheers
Sven
More information about the cisco-nsp
mailing list