Monday, May 19, 2014

Finally, BGP within the cisco ASA !

Cisco now has support for BGP in the 9.2.1 code train. Per the release notes;

http://www.cisco.com/c/en/us/support/security/asa-5500-series-next-generation-firewalls/products-release-notes-list.html


The earlier version of code disallowed BGP routing as indicated within this screenshot



This is good news also the static null routes for blackholing traffic is not bad. 


A few gotchas;


You have the enabling the BGP within the system context in a multi-context mode before you can craft any BGP configs



ipv6 is not supported

Finally they've caught up to  Juniper and Fortinet, will kinda  :)

Ken Felix
Freelance Network / Security Engineer
kfelix  ----a---t---socpuppets ---d---o---t---com

     ^      ^
=(  @   @ )=
          o
       /     \

No comments:

Post a Comment