Hello!
I want to establish a Connection to a Private AS with a Neighbor Range /29 but the BGP won't go up.
Can someone help me?
We might, if you post relevant BGP config "show router bgp" on both sides and verification of reachability between neighbor IPs like ping results.
Toshi
You may also check this BGP Resource List https://community.fortinet.com/t5/FortiGate/Technical-Tip-FortiOS-BGP-Resource-List/ta-p/214290 and see if it helps.
It would be good to show us how you configure the BGP neighbor range. You may also refer to the following article for the configuration example of BGP neighbor group:
https://docs.fortinet.com/document/fortigate/6.4.2/administration-guide/390427/configure-bgp
config router bgp set as 65500 set router-id 10.10.0.1 set ebgp-multipath enable set graceful-restart enable config neighbor-group edit "branch-peers-1" set soft-reconfiguration enable set remote-as 65501 next edit "branch-peers-2" set soft-reconfiguration enable set remote-as 65501 next end config neighbor-range edit 1 set prefix 10.254.0.0 255.255.255.0 set neighbor-group "branch-peers-1" next edit 2 set prefix 10.254.1.0 255.255.255.0 set neighbor-group "branch-peers-2" next end
end
If you are having problem with neighbor establishment, it would be good to check the connectivity state that prevents the establishment and take packet capture to further investigate on it:
https://community.fortinet.com/t5/FortiGate/Technical-Tip-BGP-Neighbor-Adjacency-States/ta-p/208989
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.