Fortinet black logo

SD-WAN / SD-Branch Deployment Guide

Home FortiGate / FortiOS 7.0.0 SD-WAN / SD-Branch Deployment Guide
7.0.0
7.0.0

Configuring BGP

Configuring BGP

Add two BGP neighbors: one for each VPN interface on the hub device that we want to peer with.

Note

If you cannot view the Network > BGP tree menu, go to System > Feature visibility, and enable Advanced Routing in the Core Features column.
To configure BGP:
  1. Go to Network > BGP.
  2. Set the following options:
    1. Set Local AS to 65001.
    2. Set Router ID to 10.0.1.1/24, which is the first IP address of the branch LAN.
  3. In the Neighbors section, create a new neighbor:
    1. Click Create New. The Add Neighbor pane is displayed.
    2. Set IP to 10.10.10.1, which is the hub device’s IPsec tunnel interface IP address for WAN1.
    3. Set Remote AS to 65001.
    4. Select Soft reconfiguration.
    5. Select Capability: route refresh.
    6. Click OK. The neighbor is added.
  4. In the Neighbors section, create another new neighbor:
    1. Click Create New. The Add Neighbor pane is displayed.
    2. Set IP to 10.10.11.1, which is the hub device’s IPsec tunnel interface IP address for WAN2.
    3. Set Remote AS to 65001.
    4. Select Soft reconfiguration.
    5. Select Capability: route refresh.
    6. Click OK. The neighbor is added.
  5. In the Networks section, set IP/Netmask to 10.0.1.0/24.
  6. Expand the Advanced section, and set the following options:
    1. Set Keepalive to 5.
    2. Set Holdtime to 15.
  7. Expand the Best Path Selection section, and set the following options:
    1. Enable IBGP multi path.
    2. Enable Additional path.
  8. Click Appy.

Previous
Next

Configuring BGP

Add two BGP neighbors: one for each VPN interface on the hub device that we want to peer with.

Note

If you cannot view the Network > BGP tree menu, go to System > Feature visibility, and enable Advanced Routing in the Core Features column.
To configure BGP:
  1. Go to Network > BGP.
  2. Set the following options:
    1. Set Local AS to 65001.
    2. Set Router ID to 10.0.1.1/24, which is the first IP address of the branch LAN.
  3. In the Neighbors section, create a new neighbor:
    1. Click Create New. The Add Neighbor pane is displayed.
    2. Set IP to 10.10.10.1, which is the hub device’s IPsec tunnel interface IP address for WAN1.
    3. Set Remote AS to 65001.
    4. Select Soft reconfiguration.
    5. Select Capability: route refresh.
    6. Click OK. The neighbor is added.
  4. In the Neighbors section, create another new neighbor:
    1. Click Create New. The Add Neighbor pane is displayed.
    2. Set IP to 10.10.11.1, which is the hub device’s IPsec tunnel interface IP address for WAN2.
    3. Set Remote AS to 65001.
    4. Select Soft reconfiguration.
    5. Select Capability: route refresh.
    6. Click OK. The neighbor is added.
  5. In the Networks section, set IP/Netmask to 10.0.1.0/24.
  6. Expand the Advanced section, and set the following options:
    1. Set Keepalive to 5.
    2. Set Holdtime to 15.
  7. Expand the Best Path Selection section, and set the following options:
    1. Enable IBGP multi path.
    2. Enable Additional path.
  8. Click Appy.

Previous
Next