Hi Team,
I am configuring dynamic routing with AWS and on-prem check point gws in R80.30 using vti tunnels. CP is in VRRP cluster mode
This is eBGP and both are having different AS numbers. Now surprising thing is ipsec with AWS is up but somehow BGP peers are not coming up and at check point it still shows idle state.
- I have proper policy configured to allow port 179 and can see packets coming in from AWS side
- wanted to know if there is any way to capture the packets for port 179 so that I can see the udpates on Check Point firewall
- What are other possibilities behind BGP not coming up?
- If I see using netstat and port 179 is listening but tcpdump -nni any port 179 is not showing any packets.
Can someone pls help?
Thanks and Regards,
Blason R
CCSA,CCSE,CCCS