Skip to main content
jiahoong112
Staff
jiahoong112
Staff
October 2, 2024

Technical Tip: BGP Neighbor in Idle (Admin)

  • October 2, 2024
  • 0 replies
  • 5350 views
Description

This article describes that there may be times when the BGP neighbors may show up as Idle (Admin).

 

jiahoong112_0-1727837729902.png

 

This is usually seen when the neighbor, interface has been administratively disabled or shut down. Sometimes this is even when the interface is Up and the BGP neighbor is not in a shutdown state. Running a sniffer packet on port 179 results in 1-way BGP TCP traffic with FortiGate sending the FIN packet to BGP TCP traffic.

 

BGP debug shows the following message:

 

BBGP: [NETWORK] Accept Thread: Incoming conn from host 10.201.99.254 (FD=28 VRF=0)
BGP: 10.201.99.254-Outgoing [FSM] State: Idle Event: 14 <--------------
Scope FortiGate.
Solution

To fix this, shut down and unshut the BGP neighbor as such:

 

Shutdown the BGP neighbor first:

 

config router bgp
    config neighbor
        edit <bgp-peer>
            set shutdown enable
        end
end

 

Wait for 30 seconds and Unshut:

 

config router bgp

    config neighbor

        edit <bgp-peer>

            unset shutdown

        end

end
    Terms & ConditionsAccessibility statement