Hello!
I have three site-to-site VPNs with AWS using static route and I want to switch to BGP routing.
The articles I've read only deal with BGP with just a VPN, no redundancy.
How do I configure the FGT BGP routes to use the three VPNs?
Hi andersonlima,
As I have understand you want to configure dynamic routing and need to have redundancy with three VPN tunnels.
There are different scenario how you built your network topology. One of them explain as below
1) Over 3 VPN tunnel 3 BGP neighborship.
2) Advertised your routes to peer with AS-PATH prepend (AS-path prepend is used for reverse route selection preference)
3) While received routes set weight in FortiGate specific bgp neighbors according to your forward route selection preference(exit interface selection)
Reference Document:
https://community.fortinet.com/t5/FortiGate/Technical-Tip-BGP-AS-Path-Prepending-Configuration-Example/ta-p/194522
https://community.fortinet.com/t5/FortiGate/Technical-Tip-Use-BGP-Weight-attribute-to-prefer-default-route/ta-p/195347
Above documents written for specific use case, you may refer specific configuration according to your requirement.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
