[j-nsp] Q. Is anyone deploying TCP Authentication Option (TCP-AO) on their BGP peering Sessions?
Chris Kawchuk
ckawchuk at gmail.com
Tue Sep 26 22:08:16 EDT 2023
FWIW -- We've asked for that feature now in any RFP/RFQs we send to the usual gang of $vendors.
Thats our method to get adoption, else they get a black-mark/non-comply in the [BGP section] when it comes time to score the responses.
- CK.
> On 27 Sep 2023, at 10:49, Barry Greene via juniper-nsp <juniper-nsp at puck.nether.net> wrote:
>
> Hi Team,
>
> Q. Is anyone deploying TCP Authentication Option (TCP-AO) on their BGP peering Sessions?
>
> I’m not touching routers right now. I’m wondering if anyone has deployed, your experiences, and thoughts?
>
> This is suppose to be the “replacement” for BGP MD5, ‘but’ I’m hearing …..
>
> 1. The Vendors are not supporting yet. Which means a lot of older systems would not be able to support a BGP session with TCP-AO.
> 2. People have to tried is operationally.
>
> Sharing you thoughts would be helpful …...
>
> Thanks,
>
> Barry
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp
More information about the juniper-nsp
mailing list