BGP over GRE Connection
Run BGP and build a GRE connection to a remote site.
The BGP over GRE connection is typically selected when peering Aviatrix Gateways with AWS TGW. |
To set up an external connection via BGP over GRE:
-
Go to Networking > Connectivity > External Connections (S2C) tab.
-
Click + External Connection.
-
Select or enter the following values:
Field |
Description |
Name |
Enter a unique name to identify the connection to the external device. |
Connect Public Cloud To |
|
Local Gateway |
Select the Transit Gateway. |
Local ASN |
Enter the BGP AS number the Transit Gateway will use to exchange routes with the external device. |
Remote ASN |
Enter the BGP AS number the external device will use to exchange routes with the Transit Gateway. |
Over Private Network |
Select this option if your underlay network is private network, such as AWS Direct Connect and Azure ExpressRoute. When this option is selected, BGP and IPsec run over private IP addresses. |
Learned CIDR Approval |
This is Off and disabled by default unless the Local Gateway you select has Learned CIDR Approval turned On; the Connection option selected, and the BGP connection selected. Then it is On by default (not editable). When this setting is On, an approval process is set up for gateway learned CIDRs for this BGP external connection. This approval process improves security for your network. If an unapproved CIDR address attempts to access the connection, CoPilot sends an approval email to the CoPilot admin so that the admin can approve or block access. |
ActiveMesh Connection |
|
+Remote Gateway |
Click here to add a remote or on-prem gateway instance. |
Remote Gateway Instance IP |
Enter the IP address of the remote or on-prem device. |
Local Tunnel IP |
Enter the IP address of the local tunnel. |
Remote Tunnel IP |
Enter the IP address of the remote tunnel. |
-
Click Save.
The new BGP over GRE external connection appears in the table.