[c-nsp] BGP TTL check (GTSM)
Justin Shore
justin at justinshore.com
Wed Jun 18 12:47:14 EDT 2008
Has anyone run into any problems with the BGP TTL security check? I've
tried to configure it a couple of times on our eBGP peers with no luck.
The BGP session is eventually dropped after the hold time expires. It
should be extremely easy to configure but for some reason it always fails.
neighbor a.b.c.d ttl-security hops 1
The peer drops after a couple minutes (I forget what the default timer
values are). Am I missing something simple? I'm in the process of
moving an upstream peer so I'm taking the opportunity to try and make
this work again with no luck so far. The peer is eBGP, directly
connected with no multihop needed.
Thanks
Justin
More information about the cisco-nsp
mailing list