Restricting TCP Connections to BGP Peers

You can restrict TCP connection attempts on port 179 to BGP peers only. This blocks all non-BGP connection attempts on port 179.

To restrict TCP connection attempts to BGP peers include the apply-path statement at the [edit policy-options prefix-list list-name] hierarchy level:

[edit policy-options prefix-list list-name]apply-path protocol bgp group group-name neighbor neighbor;

For detailed information about configuring TCP connection attempts, see the Junos Policy Framework Configuration Guide.

Copyright© 1999-2010 Juniper Networks, Inc. All rights reserved.