Out of curiosity, are you asking for a specific research/project that you need some data for?
GTSM is not a replacement for the ACL filtering the bgp speakers or the MD5 ( that is widely supported).
If GTSM is not supported you can always predefine the TTL it in the session and manipulate the defaults ( 1 for EBGP 64 IBGP) yet this is works on small scale networks.
Another practice is to define who starts the session ( as port 179 is not hard to figure). Yet in all case the ACL is your first defense who is allowed for TCP and when the session is established what they can advertise and what you are willing to accept across the session ( NXT hop, n0. of routers, as-path, communities....etc).
https://www.noction.com/blog/bgp_security_md5_password_and_gtsm
www.noction.com
There are three security mechanisms that can protect against potential security issues with BGP: the BGP TCP MD5 password, IPsec and GTSM...
|
LG