Description |
This article describes how the 'set passive' BGP commands for neighbor operate on a FortiGate. |
Scope | FortiGate. |
Solution |
Use the CLI below command:
config router bgp set router-id 10.21.7.155 config neighbor edit "10.21.7.162" set passive enable [Default is disable] end end
When 'set passive' is enabled for the BGP neighbor, it means FortiGate will not initiate the TCP session for that neighbor.
Here is the example, for BGP neighbor 10.21.7.162, the passive command has been enabled, which forces it to not initiate the connection, but it responds to the packet received from the neighbor.
|
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.