Show Posts
1
21.1 Legacy Series / Re: Routed IPSec BGP Invalid
« on: October 05, 2021, 10:03:25 pm »
I was struggling with this today and the fix for me was to enable "Multi-Hop" on the BGP Peer.
I'm also using Azure's recommended tunnel IP which you can get from the "Download Configuration" on the connection in the Azure portal. Typically they'll tell you to use 169.254.0.1/30 on the opnsense side.
I think it's in the docs, but I also created a gateway for Azure's 169.254.0.2 IP on the IPSec interface, and added a static /32 route for the Azure VPN Gateway's BGP peer IP.
I'm also using Azure's recommended tunnel IP which you can get from the "Download Configuration" on the connection in the Azure portal. Typically they'll tell you to use 169.254.0.1/30 on the opnsense side.
I think it's in the docs, but I also created a gateway for Azure's 169.254.0.2 IP on the IPSec interface, and added a static /32 route for the Azure VPN Gateway's BGP peer IP.