Help
FortiSwitch
FortiSwitch: secure, simple and scalable Ethernet solutions
DuyNguy
Staff
Staff

Created on ‎09-29-2024 09:32 PM

Article Id 345325

Technical Tip: FortiSwitch and Amazon AWS DX Endpoint BGP Configuration Example

Description

This article describes how to configure BGP routing between a standalone FortiSwitch and Amanzon AWS DX endpoint.
Scope FortiSwitch and Amazon AWS BGP routing.
Solution

FortiSwitch and Amazon BGP configuration requirement as follow:

  1. Configure router BGP on switch port uplink to Amazon AWS Circuit (information provided by Amazon).
  2. The switch port needs to be configured as trunk and allow the Vlan (provided by Amazon).
  3. FortiSwitch physical port port24 configuration:

 

edit "port24"

    set description "Uplink to Amazon AWS-DC Circuit"

    set speed 10000full

next

 

  1. FortiSwitch interface port24 and internal configuration:

 

edit "port24"

    set native 1

    set allowed-vlans 364

next

    edit "internal"

        set native 1

        set allowed-vlans 35,364

        set stp-state disabled

    next

 

  1. FortiSwitch BGP and static route configuration:

 

config router bgp

    set as 12345

    set router-id 5.6.7.8

        config neighbor

            edit "169.254.10.33"

                set remote-as 54321

                set password “provided-by-Amazon-team"

            next

        end

 

config network

    edit 1

        set prefix 169.254.10.32 255.255.255.248

    next

end

 

config router static

    edit 1

        set dst 0.0.0.0 0.0.0.0

        set gateway 169.254.10.33

    next

end
104
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.