Hello!
I'm trying to migrate from Juniper to fortigate and I have a hard time configuring BGP to work as the same way from Juniper to Fortigate,
Mainly to have the following settings in the Fortigate:
- neighbor 2.2.2.1 { - local-address 2.2.2.2;
- authentication-key "blabla2";
What would be the equivalent in Fortigate OS ?
Juniper config::
protocols { bgp { traceoptions { file bgp size 10m; } local-as 12345; group ISP1{ neighbor 1.1.1.1 { local-address 1.1.1.2; authentication-key "blabla1";
peer-as 55444; } } group ISP2{ neighbor 2.2.2.1 { local-address 2.2.2.2;
authentication-key "blabla2";
peer-as 44555 } } } stp; }
Thanks for your help !
Solved! Go to Solution.
Easy
config router BGP
set as 12345
config neighbor
edit “2.2.2.1”
set remote-as 44555
set password BlahBlah
next end
PCNSE
NSE
StrongSwan
I don't think you can configure "local-address" though. It's decided by the interface the neighbor is connected on.
Not correct.
I believe the option exist as "set update-source interfacename" and per neighbor, but I'm right in front of FGT at this time to check.
ken
PCNSE
NSE
StrongSwan
Easy
config router BGP
set as 12345
config neighbor
edit “2.2.2.1”
set remote-as 44555
set password BlahBlah
next end
PCNSE
NSE
StrongSwan
I don't think you can configure "local-address" though. It's decided by the interface the neighbor is connected on.
Not correct.
I believe the option exist as "set update-source interfacename" and per neighbor, but I'm right in front of FGT at this time to check.
ken
PCNSE
NSE
StrongSwan
All right, Ken is right.
xxxx-fg1 (xx.xx.xx.xx) # get | grep update- update-source :
So it would look something like this??
config router BGP set as 12345 config neighbor
edit “1.1.1.1” set remote-as 55444 set password blabla1 set local-address 1.1.1.2 next
edit “2.2.2.1” set remote-as 44555 set password blabla2 set local-address 2.2.2.2 next
end
Yes, although I haven't used local-address before. I know you know how to find these commands but for debugging/troubleshooting you can use:
"get router info bgp ?"
And almost all BGP related commands are underneath it.
For cleaing BGP:
"exe router clear bgp ?"
It would be more helpful if I showed where in the hierarchy I executed above command.
xxxx-fg1 # config router bgp xxxx-fg1 (bgp) # config neighbor xxxx-fg1 (neighbor) # edit xx.xx.xx.xx
a
 
					
				
				
			
		
| User | Count | 
|---|---|
| 2678 | |
| 1412 | |
| 810 | |
| 703 | |
| 455 | 
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.