[c-nsp] Nexus Architecture question
Drew Weaver
drew.weaver at thenap.com
Wed Jun 2 14:33:28 EDT 2021
Absolutely,
iACLs can also prevent access to NXAPI and SNMP but those aren't the most central place to put rules like that.
If iACLs are the only way to prevent access to BGP fine, but what would be the technical explanation for that?
Does BGP run a separate instance on each L3 interface or is there a central process (somewhere)?
Thanks,
-Drew
-----Original Message-----
From: Dobbins, Roland <Roland.Dobbins at netscout.com>
Sent: Wednesday, June 2, 2021 2:30 PM
To: Drew Weaver <drew.weaver at thenap.com>
Cc: cisco-nsp at puck.nether.net
Subject: Re: [c-nsp] Nexus Architecture question
> On Jun 2, 2021, at 20:46, Drew Weaver <drew.weaver at thenap.com> wrote:
>
> The reason I am asking is because I've noticed that no matter what I do I cannot seem to "close" the BGP port by using CoPP.
iACLs can accomplish the goal, yes?
---------------------------
roland.dobbins at netscout.com
More information about the cisco-nsp
mailing list