Fortinet Document Library

Version:

Version:


Table of Contents

Hyperscale Firewall Guide

Download PDF
Copy Link

BGP IPv6 conditional route advertisement configuration example

The following configuration shows how to use the condition-type option to control how a FortiGate advertises routes when it is connected to two external routers.

When condition-type is set to non-exist the FortiGate advertises route2 (2003:172:22:1::/64) to Router2 when it learns route1 (2003:172:28:1::/64). When condition-type is set to exist, the FortiGate will not advertise route2 (2003:172:22:1::/64) to Router2 when it knows route1 (2003:172:28:1::/64).

config router prefix-list6

edit adv-222

config rule

edit 1

set prefix6 2003:172:22:1::/64

end

 

config router prefix-list6

edit list6-1

config rule

edit 1

set prefix6 2003:172:28:1::/64

end

 

config router route-map

edit map-222

config rule

edit 1

set match-ip6-address adv-222

end

config router route-map

edit "map-281"

config rule

edit 1

set match-ip6-address list6-1

end

config router bgp

set as 65412

set router-id 1.1.1.1

set ibgp-multipath enable

set network-import-check disable

set graceful-restart enable

config neighbor

edit 2003::2:2:2:2

set soft-reconfiguration6 enable

set remote-as 65412

set update-source loopback1

config conditional-advertise6

edit map-222

set condition-routemap map-281

set condition-type {exist | non-exist}

end

edit 2003::3:3:3:3

set soft-reconfiguration6 enable

set remote-as 65412

set update-source loopback1

end

BGP IPv6 conditional route advertisement configuration example

The following configuration shows how to use the condition-type option to control how a FortiGate advertises routes when it is connected to two external routers.

When condition-type is set to non-exist the FortiGate advertises route2 (2003:172:22:1::/64) to Router2 when it learns route1 (2003:172:28:1::/64). When condition-type is set to exist, the FortiGate will not advertise route2 (2003:172:22:1::/64) to Router2 when it knows route1 (2003:172:28:1::/64).

config router prefix-list6

edit adv-222

config rule

edit 1

set prefix6 2003:172:22:1::/64

end

 

config router prefix-list6

edit list6-1

config rule

edit 1

set prefix6 2003:172:28:1::/64

end

 

config router route-map

edit map-222

config rule

edit 1

set match-ip6-address adv-222

end

config router route-map

edit "map-281"

config rule

edit 1

set match-ip6-address list6-1

end

config router bgp

set as 65412

set router-id 1.1.1.1

set ibgp-multipath enable

set network-import-check disable

set graceful-restart enable

config neighbor

edit 2003::2:2:2:2

set soft-reconfiguration6 enable

set remote-as 65412

set update-source loopback1

config conditional-advertise6

edit map-222

set condition-routemap map-281

set condition-type {exist | non-exist}

end

edit 2003::3:3:3:3

set soft-reconfiguration6 enable

set remote-as 65412

set update-source loopback1

end