Hi all
I am supposed to configure OSPF peering between a Fortigate and a Meraki Hub (MX?).
Unfortunately there is not much to configure on Meraki side (it has the correct ospf ID and an unique router ID and identical Hello and Dead timeouts). So I suppose I need to do that on my site on the FGT.
Has someone an idea why the meraki does not show up on my neighbor list?
Information I have:
How would I advertise 10.x.x.x/23 into all other OSPF areas while still be able to put in 1.1.1.17 in order to do some broadcast OSPF neigbhouring?
[2]
port1 is up, line protocol is up
Internet Address 10.21.204.1/23, Area 0.0.0.0, MTU 1500
Process ID 0, VRF 0, Router ID 10.21.204.1, Network Type POINTOPOINT, Cost: 1
Transmit Delay is 1 sec, State Point-To-Point
Timer intervals configured, Hello 10.000, Dead 40, Wait 40, Retransmit 5
Hello due in 00:00:02
Neighbor Count is 0, Adjacent neighbor count is 0
Crypt Sequence Number is 21
Hello received 0 sent 1055356, DD received 0 sent 0
LS-Req received 0 sent 0, LS-Upd received 0 sent 0
LS-Ack received 0 sent 0, Discarded 0
Thanks a lot for your help
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Your understanding is correct, you cannot put 10.x.x.x/23 under 2 different areas, but you don't have to worry about this subnet getting advertised to different areas. By default OSPF will database will get this information as a summary route.
in otherwords, if you put 10.x.x.x/23 in 1.1.1.17 , area 0 will be aware about this as a summary route and other OSPF neighbors connected to area 0 will also get the same.
Your understanding is correct, you cannot put 10.x.x.x/23 under 2 different areas, but you don't have to worry about this subnet getting advertised to different areas. By default OSPF will database will get this information as a summary route.
in otherwords, if you put 10.x.x.x/23 in 1.1.1.17 , area 0 will be aware about this as a summary route and other OSPF neighbors connected to area 0 will also get the same.
Thank you very much for your reply - that worked without issues.
I changed the network 10.x.x.x/23 to the new (sub)area and it was a) still advertised via 0.0.0.0 and b) the neighbor peering with Meraki came up as "full"!
Thank you again!
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1732 | |
1106 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.