IP-SLA for BGP connection ?

Forum|Forum|3 years ago
October 23, 2022
1 reply
2548 views

Hello, I have a BGP link on my Fortigate.

We recently had a case whereby the L3 link was still up even though the Internet was unavailable.

Therefore,I want to set up an SLA (pinging to 8.8.8.8) to monitor that the Internet is up. If not, then I need to remove all BGP routes or shut down that link.

Is this going to be possible, or will the SLA only work with static routes ?

Thank you,

FortiGate

distillednetwork

Explorer II

If you are monitoring the WAN out one port and sharing BGP out another, you can use link-monitor to bring down the BGP interface using this:

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Bring-other-interfaces-down-when-link-monitor/ta-p/190877

If you are using SD-WAN you can also use an SLA health-check to remove routes or make them less desirable with a route-map-out and route-map-out-preferrable.

https://docs.fortinet.com/document/fortigate/6.2.0/new-features/638759/bgp-route-map-and-selective-rules-6-2-1

I hope this helps

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded