BGP over GRE Connection

Run BGP and build a GRE connection to a remote site.

The BGP over GRE connection is typically selected when peering Aviatrix Gateways with AWS TGW.

To set up an external connection via BGP over GRE:

  1. Go to Networking > Connectivity > External Connections (S2C) tab.

  2. Click + External Connection.

  3. Select or enter the following values:

Field

Description

Name

Enter a unique name to identify the connection to the external device.

Connect Public Cloud To

  1. Select the External Device radio button.

  2. Click on the dropdown menu and select BGP over GRE.

Local Gateway

Select the Transit Gateway.

Local ASN

Enter the BGP AS number the Transit Gateway will use to exchange routes with the external device.

Remote ASN

Enter the BGP AS number the external device will use to exchange routes with the Transit Gateway.

Over Private Network

Select this option if your underlay network is private network, such as AWS Direct Connect and Azure ExpressRoute. When this option is selected, BGP and IPsec run over private IP addresses.

Learned CIDR Approval

This is Off and disabled by default unless the Local Gateway you select has Learned CIDR Approval turned On; the Connection option selected, and the BGP connection selected. Then it is On by default (not editable).

When this setting is On, an approval process is set up for gateway learned CIDRs for this BGP external connection. This approval process improves security for your network. If an unapproved CIDR address attempts to access the connection, CoPilot sends an approval email to the CoPilot admin so that the admin can approve or block access.

ActiveMesh Connection

+Remote Gateway

Click here to add a remote or on-prem gateway instance.

Remote Gateway Instance IP

Enter the IP address of the remote or on-prem device.

Local Tunnel IP

Enter the IP address of the local tunnel.

Remote Tunnel IP

Enter the IP address of the remote tunnel.

  1. Click Save.

The new BGP over GRE external connection appears in the table.