- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
04-27-2019 02:58 PM
Hello Folks,
I have a simple BGP question.
I'm going to be creating a BGP peer between a Palo Alto firewall and a Cisco router. Do I need to create a security policy allowing TCP/179 between my Palo Alto firewall and the router. They are directly connected. I cant find any examples of that.... so hopeing some can advise.
thank you.
04-27-2019 08:31 PM
This would depend on how you've configured your firewall. I would look at the logs, ensuring that you've temporarily allowed logging on the default intrazone and interzone default policies, and see what the logs are saying. In some cases you won't need one because the traffic is intrazone (untrust to untrust) traffic; in other cases you will need a policy as it's interzone traffic.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!