Basic IPv6 BGP example
In this example, Enterprise Core FortiGate peers with the ISP BGP Router over eBGP to receive a default route.
Topology
The following topology is used for this example:
Please note that the IPv6 addresses used in this example are for illustrative purposes only and should not be used in your environment. The 2001:db8::/32 prefix is a special IPv6 prefix designated for use in documentation examples. See RFC 3849 for more information. |
Please note that the Autonomous System Numbers (ASN) used in this example are reserved for documentation use only and should not be used in your environment. See RFC 5398 for more information. |
To configure BGP on the Enterprise Core FortiGate in the GUI:
-
Go to Network > BGP.
-
Set Local AS to 64511.
-
Set Router ID to 13.13.13.13.
-
In the Neighbors table, click Create New and set the following:
IP 2001:db8:d0c:6::2 Remote AS 64510 -
Click OK.
-
Under IPv6 Networks, set IP/Netmask to 2001:db8:d0c:6::/64.
-
Click Apply.
To configure BGP on the Enterprise Core FortiGate in the CLI:
config router bgp set as 64511 set router-id 13.13.13.13 config neighbor edit "2001:db8:d0c:6::2" set remote-as 64510 next end config network6 edit 1 set prefix6 2001:db8:d0c:6::/64 next end end
Testing the configuration
To verify the status of the neighbors:
# get router info6 bgp neighbors VRF 0 neighbor table: BGP neighbor is 2001:db8:d0c:6::2, remote AS 64510, local AS 64511, external link BGP version 4, remote router ID 1.1.1.2 BGP state = Established, up for 02:43:35 Last read 00:00:14, hold time is 180, keepalive interval is 60 seconds Configured hold time is 180, keepalive interval is 60 seconds Neighbor capabilities: Route refresh: advertised and received (old and new) Address family IPv4 Unicast: advertised and received Address family VPNv4 Unicast: advertised and received Address family IPv6 Unicast: advertised and received Address family L2VPN EVPN: advertised and received Received 263 messages, 0 notifications, 0 in queue Sent 260 messages, 1 notifications, 0 in queue Route refresh request: received 0, sent 0 NLRI treated as withdraw: 0 Minimum time between advertisement runs is 30 seconds For address family: IPv4 Unicast BGP table version 1, neighbor version 0 Index 1, Offset 0, Mask 0x2 Community attribute sent to this neighbor (both) 0 accepted prefixes, 0 prefixes in rib 0 announced prefixes For address family: VPNv4 Unicast BGP table version 1, neighbor version 0 Index 1, Offset 0, Mask 0x2 Community attribute sent to this neighbor (both) 0 accepted prefixes, 0 prefixes in rib 0 announced prefixes For address family: IPv6 Unicast BGP table version 3, neighbor version 2 Index 1, Offset 0, Mask 0x2 Community attribute sent to this neighbor (both) 3 accepted prefixes, 3 prefixes in rib 1 announced prefixes For address family: L2VPN EVPN BGP table version 1, neighbor version 1 Index 1, Offset 0, Mask 0x2 Community attribute sent to this neighbor (both) 0 accepted prefixes, 0 prefixes in rib 0 announced prefixes Connections established 2; dropped 1 Local host: 2001:db8:d0c:6::1, Local port: 179 Foreign host: 2001:db8:d0c:6::2, Foreign port: 16500 Egress interface: 9 Nexthop: 13.13.13.13 Nexthop interface: port3 Nexthop global: 2001:db8:d0c:6::1 Nexthop local: fe80::20c:29ff:fefc:1868 BGP connection: shared network Last Reset: 02:43:42, due to BGP Notification sent Notification Error Message: (CeaseUnspecified Error Subcode)
To verify the networks learned from neighbors or a specific network:
# get router info6 bgp network VRF 0 BGP table version is 3, local router ID is 13.13.13.13 Status codes: s suppressed, d damped, h history, * valid, > best, i - internal, S Stale Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf Weight RouteTag Path *> ::/0 2001:db8:d0c:6::2(fe80::20c:29ff:febc:eec2) 0 0 0 64510 ? <-/1> *> 64:ff9b::/96 2001:db8:d0c:6::2(fe80::20c:29ff:febc:eec2) 0 0 0 64510 ? <-/1> * 2001:db8:d0c:6::/64 2001:db8:d0c:6::2(fe80::20c:29ff:febc:eec2) 0 0 0 64510 i <-/-> *> 100 32768 0 i <-/1> Total number of prefixes 3
To verify the routing table:
# get router info6 routing-table IPv6 Routing Table Codes: K - kernel route, C - connected, S - static, R - RIP, O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2 i - IS-IS, B - BGP, V - BGP VPNv6 * - candidate default Timers: Uptime Routing table for VRF=0 B* ::/0 [20/0] via fe80::20c:29ff:febc:eec2, port3, 02:45:56, [1024/0] C ::1/128 via ::, root, 03:45:04 B 64:ff9b::/96 [20/0] via fe80::20c:29ff:febc:eec2, port3, 02:45:56, [1024/0] C 2001:db8:d0c:1::/64 via ::, port1, 00:33:21 O 2001:db8:d0c:2::/64 [110/2] via fe80::20c:29ff:fe4d:f81f, port1, 00:33:04, [1024/0] [110/2] via fe80::20c:29ff:fe6b:b2c9, port2, 00:33:04, [1024/0] C 2001:db8:d0c:3::/64 via ::, port2, 03:45:04 O 2001:db8:d0c:4::/64 [110/2] via fe80::20c:29ff:fe4d:f81f, port1, 00:33:04, [1024/0] O 2001:db8:d0c:5::/64 [110/2] via fe80::20c:29ff:fe6b:b2c9, port2, 02:51:32, [1024/0] C 2001:db8:d0c:6::/64 via ::, port3, 03:45:04