Hello guys,
I have a cluster of Fortigate connected with another couple of FGT with two links in protocol BGP.
I have choose to set one primary and one in backup with the weight.
I would like now share the links in active way mode, to load balacing both of them in upload than in download, so in routing table have for each remote network both the links with the same distance and metric.
This is my conf:
Thanos_GRA (BGP_DR) # sh router bgp
config router bgp
set as 65000
set router-id 2.1.71.238
config neighbor
edit "2.1.71.237"
set description "Gravina_vs_Siziano_1"
set remote-as 1267
set keep-alive-timer 45
set holdtime-timer 120
set connect-timer 60
set weight 200
next
edit "2.1.71.245"
set description "Flaminia_vs_Siziano_2"
set remote-as 1267
set keep-alive-timer 45
set holdtime-timer 120
set connect-timer 60
set weight 90
next
end
Thanos_GRA (BGP_DR) # get router info bgp network 192.168.202.0
VRF 0 BGP routing table entry for 192.168.202.0/24
Paths: (2 available, best #1, table Default-IP-Routing-Table)
Advertised to non peer-group peers:
2.1.71.245
Original VRF 0
1267 1267
2.1.71.237 from 2.1.71.237 (151.7.203.107)
Origin IGP metric 0, localpref 100, weight 200, valid, external, best
Extended Community: RT:1267:64921
Last update: Wed Apr 6 12:04:07 2022
Original VRF 0
1267 1267 1267
2.1.71.245 from 2.1.71.245 (151.7.203.107)
Origin IGP metric 0, localpref 100, weight 90, valid, external
Extended Community: RT:1267:64921
Last update: Fri Mar 25 23:17:53 2022
Thanos_GRA (BGP_DR) # get router info routing-table details 192.168.202.0/24
Routing table for VRF=0
Routing entry for 192.168.202.0/24
Known via "bgp", distance 20, metric 0, best
Last update 01w1d23h ago
* 2.1.71.237, via VLAN_71 distance 0
If I set the weight at the same value, could i achieve the goal?
Thank you for the answer.
Fabio
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Oh, my bad. I took wrong neighbor when I copied it. Yes, I meant 2.1.71.237 :)
Hello,
Thank you for your question. Yes, it will work. You will need to enable ebgp-multipath and you will need to play with some attributes. For example, I can see that each route has different length of as-path. Other than this, I don't see any problem.
Hello guys,
i just applied some config as suggested but i didn't goal the result.. only one link is matching as you see:
onfig router bgp
set as 65000
set router-id 2.1.71.238
set ebgp-multipath enable
set ibgp-multipath enable
config neighbor
edit "2.1.71.237"
set description "Gravina_vs_Siziano_1"
set remote-as 1267
set keep-alive-timer 45
set holdtime-timer 120
set connect-timer 60
set weight 200
next
edit "2.1.71.245"
set description "Flaminia_vs_Siziano_2"
set remote-as 1267
set keep-alive-timer 45
set holdtime-timer 120
set connect-timer 60
set weight 200
next
end
Thanos_GRA (Siziano_DR) # get router info bgp network 192.168.224.0/23
VRF 0 BGP routing table entry for 192.168.224.0/23
Paths: (2 available, best #2, table Default-IP-Routing-Table)
Advertised to non peer-group peers:
2.1.71.245
Original VRF 0
1267 1267 1267
2.1.71.245 from 2.1.71.245 (151.7.203.107)
Origin IGP metric 0, localpref 100, weight 200, valid, external
Extended Community: RT:1267:64921
Last update: Wed Apr 20 12:11:25 2022
Original VRF 0
1267 1267
2.1.71.237 from 2.1.71.237 (151.7.203.107)
Origin IGP metric 0, localpref 100, weight 200, valid, external, best
Extended Community: RT:1267:64921
Last update: Wed Apr 6 12:04:07 2022
Thanos_GRA (Siziano_DR) # get router info routing-table details 192.168.224.0/23
Routing table for VRF=0
Routing entry for 192.168.224.0/23
Known via "bgp", distance 20, metric 0, best
Last update 02w0d00h ago
* 2.1.71.237, via VLAN_71 distance 0
any idea on as path to change?
thank you
Hello,
As I said, as-path is different. Try to configure as-path prepend on inbound direction:
Here is route-map configured on outbound direction, but same should work for inbound.
ok :) I try
Thank you Akristof
Sorry akristof
the link you get, the solution it's change the prepand as-path to make one primary and second as back-up. " BGP AS-path prepending is useful in cases when there are two sites announcing the same routes. However, it is required that one site is the primary and the other site is the backup."
To achieve this, in the example, through the route map inserts more as path to make it less preferable.
I have the same scope but i would like have both active and in the routing table have the same destionation reach them, not only one at the same time.
Fabio
Hi.
For this neighbor 2.1.71.245, put route-map in inbound direction that will prepend as-path once. So it will be like this:
config router route-map
edit prepend
config rule
edit 1
set set-as-path 1267
next
end
And use this route-map. Because goal is to have 2 neighbors, with same as-path length.
Hi
it's strange but it add another as-path to the exist, look:
Thanos_GRA (Siziano_DR) # get router info bgp network 192.168.224.0/23
VRF 0 BGP routing table entry for 192.168.224.0/23
Paths: (2 available, best #2, table Default-IP-Routing-Table)
Advertised to non peer-group peers:
2.1.71.245
Original VRF 0
1267 1267 1267 1267
2.1.71.245 from 2.1.71.245 (151.7.203.107)
Origin IGP metric 0, localpref 100, weight 200, valid, external
Extended Community: RT:1267:64921
Last update: Wed Apr 20 13:44:27 2022
Original VRF 0
1267 1267
2.1.71.237 from 2.1.71.237 (151.7.203.107)
Origin IGP metric 0, localpref 100, weight 200, valid, external, best
Extended Community: RT:1267:64921
Last update: Wed Apr 20 13:20:24 2022
Hi,
I think you applied it to wrong neighbor.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1696 | |
1091 | |
752 | |
446 | |
228 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.