FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Not applicable
Article Id 192515

Description
This article provides solutions to announce only a static default route in BGP.

Solution
Solution 1

This solution applies only if the only static route present in the FortiGate routing table is the default route. Otherwise, it will advertise ALL static routes.
In this situation, configure BGP to redistribute all static routes without restriction  :

config router bgp
     config redistribute "static"
     set status enable
   end
end



Solution 2

This solution applies when there are various static routes in the FortiGate routing table, but only the default route must be announced :

1. Create a prefix list to ONLY match the default route on FortiGate.

config router prefix-list
   edit "only_default"
   config rule
     edit 1
        set prefix 0.0.0.0 0.0.0.0
        unset ge
        unset le
      next
     end
 next
end




2. Configure a route map linked to the prefix list

config router route-map
     edit "routemap1"
     config rule
        edit 1
        set match-ip-address "only_default"
        next
     end
  next
end




3. Configure BGP to redistribute static routes using the route map

config router bgp
     config redistribute "static"
        set status enable
        set route-map "routemap1"
    end
end




Related Articles

Technical Tip: FortiGate BGP configuration to announce specific routes and accept only a default rou...

Contributors