Skip to main content
hlee
hlee
New Member
October 17, 2022
Question

Fortigate BGP community

  • October 17, 2022
  • 3 replies
  • 1720 views

Hi there,

I am a newbie to Fortigate firewalls.

Is there a way for Fortigate to manipulate the admin distance of a BGP route by a route map...

For example, if the route has a match-community of 65002:1, it leaves the attribute as-is.

But if the route has a match-community of 65030:1, then Fortigate will increases the route's administrative distance to 300.

Appreciate if anyone can shed some light on this.

Cheers,

H.

3 replies

jintrah_FTNT
Staff
jintrah_FTNT
Staff
October 17, 2022

hi,

There is no ad value of 300. AD is local to a device,  you may think of altering bgp attributes, weight, local pref, etc as needed. Technical Tip: Use BGP Weight attribute to prefer ... - Fortinet Community

 

Best regards,

Jin

akristof
Staff
akristof
Staff
October 17, 2022

Hello,

Just a side note, you can change the distance for BGP. But this is for whole BGP as protocol and this will reflect administrative distance in routing-table. But as Jin said, any preference manipulation should be done via BGP metrics - as-path, local pref, ...

config router bgp     set distance-external 20     set distance-internal 200     set distance-local 200 end

 

Toshi_Esumi
SuperUser
Toshi_Esumi
SuperUser
October 17, 2022

Only based on your description without knowing exactly why you want to manipulate precedence based on incoming communities, likely you just need to set local-references inside the BGP domain.

 

Toshi

Terms & ConditionsAccessibility statement