Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
vbandha
Staff
Staff

Created on ‎11-24-2023 09:53 AM

Article Id 286031

Technical Tip: BGP Community list matching for AS above a value of 65535:1

Description This article describes how to set up a BGP Community list to match above a value of 65535:1.
Scope FortiGate.
Solution

When configuring the BGP Community list, the max value it accepts is 65535:1. Entering a value above that causes the following error:

 

1.1.JPG

 

To resolve this, CLI configuration is necessary.

 

Running the following configuration...

 

config router community-list

    edit "test1"

    set type ?

 

... Will show this result:

 

 2.JPG

 

Here, it is necessary to select the ‘expanded’ option to configure anything above 65535:1.

Use this command to configure the expanded option:

 

set type expanded

 

After that, create a rule for the community number. In this example, 375691:1 is used.

 

config rule

edit 1

set action permit

set regexp 375691:1

end

end

 

The results will look like the following:

 

 3.JPG

 

After, the list will be configured, and it will show in the GUI:

 

 4.JPG
237
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.