hello guys .
I have two internet links with which I bgp
The first question is that it says igp is in the original part of the best route table!!!
The second question is that, when entering our network, it comes from a different link. Is it possible to change the entry route?
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
as you have two eBGP peers, do you mean receiving inbound traffic for the network 193.107.48.0/24 from the AS 42337 ? If that's the case, you'd need a route map to advertise routes to the less preferred eBGP peer with a longer AS Path
config router prefix-list
edit "corporate"
config rule
edit 1
set prefix 193.107.48.0 255.255.255.0
unset ge
set le 32
next
end
next
end
config router route-map
edit "lower_preference"
config rule
edit 1
set match-ip-address "corporate"
set set-aspath "200252 200252 200252"
next
end
next
end
config router bgp
config neighbor
edit "10.51.221.169"
set route-map-out "lower_preference"
end
end
You need to explain your topology more precisely for anyone to comment on.
You have one FGT with two internet links with eBGP, right? You shouldn't see any iBGP routes.
Are you saying you still see BGP learned route with distance 200 in your routing-t table?
What kind of neighbors configured in BGP? Especially for ASNs. Do you have another neighbor (in addition to those over two internet links) configured with the same ASN?
Please share those neighbor config and actual routes in CLI you're asking about.
Toshi
config router bgp
set as 200252
set router-id 100.0.0.1
set client-to-client-reflection disable
set ebgp-multipath enable
config neighbor
edit "10.51.221.169"
set remote-as 58224
next
edit "192.168.26.197"
set remote-as 42337
next
end
config network
edit 1
set prefix 193.107.48.0 255.255.255.0
next
end
config network6
edit 1
set prefix6 ::/128
next
end
config redistribute "connected"
end
config redistribute "rip"
end
config redistribute "ospf"
end
config redistribute "static"
end
config redistribute "isis"
end
config redistribute6 "connected"
end
config redistribute6 "rip"
end
config redistribute6 "ospf"
end
config redistribute6 "static"
end
config redistribute6 "isis"
end
FW-Chakavak (wan) # get router info bgp summary
VRF 0 BGP router identifier 100.0.0.1, local AS number 200252
BGP table version is 19
3 BGP AS-PATH entries
0 BGP community entries
Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd
10.51.221.169 4 58224 44829 44203 19 0 0 1d17h53m 1
192.168.26.197 4 42337 39781 45752 19 0 0 1d17h53m 1
Total number of neighbors 2
FW-Chakavak (wan) # get router info bgp neighbors
<A.B.C.D> neighbor IP
FW-Chakavak (wan) # get router info bgp neighbors
VRF 0 neighbor table:
BGP neighbor is 10.51.221.169, remote AS 58224, local AS 200252, external link
BGP version 4, remote router ID 172.16.143.1
BGP state = Established, up for 1d17h54m
Last read 00:00:20, hold time is 180, keepalive interval is 60 seconds
Configured hold time is 180, keepalive interval is 60 seconds
Neighbor capabilities:
Route refresh: advertised and received (new)
Address family IPv4 Unicast: advertised and received
Address family VPNv4 Unicast: advertised
Address family IPv6 Unicast: advertised
Received 44830 messages, 0 notifications, 0 in queue
Sent 44170 messages, 34 notifications, 0 in queue
Route refresh request: received 0, sent 0
NLRI treated as withdraw: 0
Minimum time between advertisement runs is 30 seconds
For address family: IPv4 Unicast
BGP table version 19, neighbor version 19
Index 1, Offset 0, Mask 0x2
Community attribute sent to this neighbor (both)
1 accepted prefixes, 1 prefixes in rib
2 announced prefixes
For address family: VPNv4 Unicast
BGP table version 1, neighbor version 1
Index 1, Offset 0, Mask 0x2
Community attribute sent to this neighbor (both)
0 accepted prefixes, 0 prefixes in rib
0 announced prefixes
For address family: IPv6 Unicast
BGP table version 1, neighbor version 1
Index 1, Offset 0, Mask 0x2
Community attribute sent to this neighbor (both)
0 accepted prefixes, 0 prefixes in rib
0 announced prefixes
Connections established 37; dropped 36
Local host: 10.51.221.170, Local port: 179
Foreign host: 10.51.221.169, Foreign port: 64240
Egress interface: 7
Nexthop: 10.51.221.170
Nexthop interface: wan1
Nexthop global: ::
Nexthop local: ::
BGP connection: non shared network
Last Reset: 1d17h54m, due to BGP Notification sent
Notification Error Message: (CeaseUnspecified Error Subcode)
BGP neighbor is 192.168.26.197, remote AS 42337, local AS 200252, external link
BGP version 4, remote router ID 10.0.19.10
BGP state = Established, up for 1d17h54m
Last read 00:00:59, hold time is 180, keepalive interval is 60 seconds
Configured hold time is 180, keepalive interval is 60 seconds
Neighbor capabilities:
Route refresh: advertised and received (old and new)
Address family IPv4 Unicast: advertised and received
Address family VPNv4 Unicast: advertised
Address family IPv6 Unicast: advertised
Received 39780 messages, 1 notifications, 0 in queue
Sent 45741 messages, 12 notifications, 0 in queue
Route refresh request: received 0, sent 0
NLRI treated as withdraw: 0
Minimum time between advertisement runs is 30 seconds
For address family: IPv4 Unicast
BGP table version 19, neighbor version 19
Index 2, Offset 0, Mask 0x4
Community attribute sent to this neighbor (both)
1 accepted prefixes, 1 prefixes in rib
0 announced prefixes
For address family: VPNv4 Unicast
BGP table version 1, neighbor version 1
Index 2, Offset 0, Mask 0x4
Community attribute sent to this neighbor (both)
0 accepted prefixes, 0 prefixes in rib
0 announced prefixes
For address family: IPv6 Unicast
BGP table version 1, neighbor version 1
Index 2, Offset 0, Mask 0x4
Community attribute sent to this neighbor (both)
0 accepted prefixes, 0 prefixes in rib
0 announced prefixes
Connections established 14; dropped 13
Local host: 192.168.26.198, Local port: 11629
Foreign host: 192.168.26.197, Foreign port: 179
Egress interface: 8
Nexthop: 192.168.26.198
Nexthop interface: wan2
Nexthop global: ::
Nexthop local: ::
BGP connection: non shared network
Last Reset: 1d17h54m, due to BGP Notification sent
Notification Error Message: (CeaseUnspecified Error Subcode)
i want change inbound route to network
It is possible to do this???
as you have two eBGP peers, do you mean receiving inbound traffic for the network 193.107.48.0/24 from the AS 42337 ? If that's the case, you'd need a route map to advertise routes to the less preferred eBGP peer with a longer AS Path
config router prefix-list
edit "corporate"
config rule
edit 1
set prefix 193.107.48.0 255.255.255.0
unset ge
set le 32
next
end
next
end
config router route-map
edit "lower_preference"
config rule
edit 1
set match-ip-address "corporate"
set set-aspath "200252 200252 200252"
next
end
next
end
config router bgp
config neighbor
edit "10.51.221.169"
set route-map-out "lower_preference"
end
end
Thank you
your appreciate
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1557 | |
1033 | |
749 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.