BGP MD5 Auth on Peering Setup in Azure Portal

Ryan Williams 6 Reputation points
2022-09-27T22:36:02.173+00:00

Hello,

We would like to be able to apply an MD5 authentication string to our BGP peering sessions with Microsoft. It looks like there is a field for this in the Azure portal under Settings>Connections, then expand IPv4 or IPv6 and look for the MD5 Authentication Key field, but I am unable to make any edits to this field. Is this something that others have been able to successfully modify or setup?

Thanks

RW

Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,775 questions
{count} votes

2 answers

Sort by: Most helpful
  1. KapilAnanth-MSFT 49,616 Reputation points Microsoft Employee Moderator
    2022-09-30T05:23:01.477+00:00

    Hi @Ryan Williams ,

    My sincere apologies.
    I was providing you instructions referring to Azure ExpressRoute Peering.
    i.e, Microsoft.Network/expressRouteCircuits

    It appears you have been using Microsoft.Peering/peerings all along.

    Refer : Azure Peering Service overview | Microsoft Learn

    246381-image.png

    I am afraid Peering services are not supported in Community as of now.
    So, I would request you to create a support ticket with Azure to have a deeper investigation of this issue.

    Please feel free to let us know should you require additional details.

    Thanks,
    Kapil

    ----------------------------------------------------------------------------------------------------------------

    Please don’t forget to close the thread by clicking "Accept the answer" wherever the information provided helps you, as this can be beneficial to other community members.

    0 comments No comments

  2. Ryan Williams 6 Reputation points
    2022-10-12T19:55:37.137+00:00

    For those looking at this thread later, it turns out MS does not support MD5 on these peering connections. This is unfortunate bc MD5 based auth is a very basic and industry standard method for securing these BGP sessions. We would like to see this option supported in the future. https://learn.microsoft.com/en-us/azure/internet-peering/policy


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.