Wednesday, June 19, 2013

BGPv6 on FGT

A Fortinet SE contact me a few days to discuss some BGPv6 peering setup and with fortigates. This blog will show you  BGPv6 peering setup.

Fortigate;


FG200A2106401308 (loop0) # show
config system interface
    edit "loop0"
        set vdom "root"
        set ip 192.168.0.2 255.255.255.255
        set type loopback
        set alias "router-id"
    next
end


#WAN2 is my ipv6 uplink in the route injector of mine

config system interface
    edit "wan2"
        set vdom "root"
        set allowaccess ping
        set type physical
            config ipv6
                set ip6-address 2001:db8::1/127
            end
    next
end

# bgp cfg

FG200A2106401308 # show router bgp
config router bgp
    set as 65506
        config neighbor
            edit "2001:db8::2"
                set remote-as 65506
                set keep-alive-timer 90
                set holdtime-timer 240
                set weight 1000
            next
        end
        config redistribute "connected"
        end
        config redistribute "rip"
        end
        config redistribute "ospf"
        end
        config redistribute "static"
        end
        config redistribute "isis"
        end
        config redistribute6 "connected"
        end
        config redistribute6 "rip"
        end
        config redistribute6 "ospf"
        end
        config redistribute6 "static"
        end
        config redistribute6 "isis"
        end
    set router-id 192.168.0.2
end


And the cisco;



!
interface GigabitEthernet0/1
 description outside
 ipv6 enable
 ipv6 2001:db8::2/64
 duplex auto
 speed auto
 media-type rj45
end

and
 


router bgp 65506
 bgp log-neighbor-changes
 neighbor 2001:DB8::1 remote-as 65506
 !
 address-family ipv4
  neighbor 2001:DB8::1 activate
 exit-address-family
 !
 address-family ipv6
  network 2001:DB8:100::/64
  network 2001:DB8:101::/64
  neighbor 2001:DB8::1 activate
 exit-address-family



And  now a few show cmds
 
 
FG200A2106401308 # get router info6  bgp summary
BGP router identifier 192.168.0.2, local AS number 65506
BGP table version is 1
1 BGP AS-PATH entries
0 BGP community entries

Neighbor        V         AS MsgRcvd MsgSent   TblVer  InQ OutQ Up/Down  State/PfxRcd
2001:db8::2     4       65506      26      14        0    0    0 00:02:15        2

Total number of neighbors 1


and



FG200A2106401308 # get router info6  bgp
BGP table version is 1, local router ID is 192.168.0.2
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
              S Stale
Origin codes: i - IGP, e - EGP, ? - incomplete

   Network          Next Hop            Metric LocPrf Weight Path
*>i2001:db8:100::/64
                    2001:db8::2               0    100   1000 i
*>i2001:db8:101::/64
                    2001:db8::2               0    100   1000 i

Total number of prefixes 2



ken Felix

No comments:

Post a Comment