Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    EBGP over IPsec routed VTI tunnel issue

    Scheduled Pinned Locked Moved FRR
    1 Posts 1 Posters 68 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      tyndallcbr
      last edited by

      I am attempting to setup EBGP over IPsec routed VTI tunnel. I am having a problem with the exchange of BGP information over port 179. The inbound port 179 from the EBGP neighbor is being received but the outbound BGP port 179 traffic is being blocked by the pfsense firewall.
      COLTVTIPHASE2 Default deny rule IPv4 (1000000104) 172.16.2.22:22655 172.16.2.21:179 TCP:FPA
      The environment is a follows:
      pfSense AWS 24.03 connecting over AWS direct connect (private connection) to Juniper SRX.
      BGP Summary:
      IPv4 Unicast Summary (VRF default):
      BGP router identifier 172.16.2.22, local AS number 65041 vrf-id 0
      BGP table version 3
      RIB entries 1, using 96 bytes of memory
      Peers 1, using 13 KiB of memory
      Peer groups 1, using 64 bytes of memory
      Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd PfxSnt Desc
      172.16.2.21 4 213000 86819 62086 0 0 0 00:01:01 Idle 0 Colt-AMLSec-FW1
      Total number of neighbors 1

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.