Howdy,

      We're currently trying to implement this technique: http://kb.fortinet.com/kb/documentLink.do?externalID=FD31868

The short version is that by repeating the ASN in the "set-ASpath" parameter, one can cause a preference as to which way traffic should flow.

The problem we're having is in repeating the ASN and having the Fortimanager successfully push it to the Fortigates.

Take ASN 12345 -- If we use it just once, that's fine. But setting ASpath to 12345 12345 produces an error when using the Install Wizard.

Here are the last few lines of the Install log:

current vf=mattvdom30:4
fortigate-lab-1 (mattvdom30) $  config router route-map
fortigate-lab-1 (route-map) $  edit "prepend-ASN64809"
fortigate-lab-1 (prepend-ASN64809) $  config rule
fortigate-lab-1 (rule) $  edit 1
fortigate-lab-1 (1) $  set set-aspath 64809 64809
fortigate-lab-1 (1) $  next
fortigate-lab-1 (rule) $  end
fortigate-lab-1 (prepend-ASN64809) $  next
fortigate-lab-1 (route-map) $  end
fortigate-lab-1 (mattvdom30) $  end

---> generating verification report
(vdom mattvdom30: router route-map "prepend-ASN64809" rule 1:set-aspath)
	remote original: "64809"
	to be installed: 64809 64809

<--- done generating verification report


install failed

As you can see, the remote original value is in quotes and the to-be-installed is not in quotes. We tried wrapping them in quotes, but that caused immediate failure on install with a log files that had no details at all.

Any ideas on how this is supposed to work in Fortimanager? Is this a bug in FMGR 5.4?