FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Article Id 286532
Description This article describes how to address a BGP error message that causes BGP to remain in IDLE.
Scope FortiGate.

When troubleshooting BGP neighbor relationship issues, it is possible to see the following error message after running the following debugs: 


Enable BGP debugs: 

diagnose ip router bgp all enable

diagnose ip router bgp level info

diagnose debug enable


BGP: %BGP-3-NOTIFICATION: received from 6/1 (Cease/Maximum Number of Prefixes Reached.) 0 data-bytes []

This error message is a result of the local peer advertising more routes than the configured limit on the remote peer.


To verify what routes are being advertised to a neighbor:

get router info bgp neighbors <neighbor IP> advertised-routes

To address this issue, it is possible either to:

  1. Increase the limit of how many advertised routes can be accepted on the peer's end (more than likely not feasible as in some networks with BGP there can be a large number of routes which may cause performance issues).

  2. From the local peer, configure route maps or prefix lists to filter what routes are being advertised under the neighbor configuration:
    config router prefix-list | config router route-map 


For further information on creating prefix lists/route maps: 


  1. Apply route map or prefix list to the particular neighbor:
    config router bgp 
        config neighbor 
            edit  <neighbor IP>
                set route-map-out <route_map_name>

                set route-map-in<route_map_name>
                set prefix-list-in <prefix_list_name>
                set prefix-list-out <prefix_list_name>

Related article: 

Troubleshooting tips for FortiOS routing (RIP, OSPF, BGP, static routes, ECMP)