informatique:fortinet:bgp
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
informatique:fortinet:bgp [2018/08/27 13:22] – [Vérifications] pteu | informatique:fortinet:bgp [2021/10/27 17:03] – pteu | ||
---|---|---|---|
Line 122: | Line 122: | ||
=====Vérifications===== | =====Vérifications===== | ||
+ | Diagnostique et configuration du process BGP | ||
<code bash> | <code bash> | ||
- | # diag conf et process BGP | ||
get router bgp | get router bgp | ||
+ | get router info bgp summary | ||
+ | </ | ||
- | # voir les routes | + | Voir le status des protocoles de routage dynamiques |
+ | <code bash> | ||
+ | get router info protocols | ||
+ | # [..] résultat de la commande limité au BGP | ||
+ | Routing Protocol is "bgp 65425" | ||
+ | IGP synchronization is disabled | ||
+ | Automatic route summarization is disabled | ||
+ | Default local-preference applied to incoming route is 100 | ||
+ | Redistributing: | ||
+ | Neighbor(s): | ||
+ | Address | ||
+ | 10.55.200.94 | ||
+ | </ | ||
+ | |||
+ | Afficher les réseaux BGP annoncés et reçus par le routeur : | ||
+ | <code bash> | ||
+ | get router info bgp network | ||
+ | BGP table version is 8, local router ID is 10.204.255.2 | ||
+ | Status codes: s suppressed, d damped, h history, * valid, > best, i - internal, | ||
+ | S Stale | ||
+ | Origin codes: i - IGP, e - EGP, ? - incomplete | ||
+ | |||
+ | | ||
+ | *> 10.31.0.24/ | ||
+ | *> 10.55.200.92/ | ||
+ | *> 10.55.200.94/ | ||
+ | *> 10.55.200.254/ | ||
+ | *> 10.143.0.24/ | ||
+ | *> 10.143.6.8/ | ||
+ | *> 10.143.8.8/ | ||
+ | *> 10.204.241.1/ | ||
+ | *> 10.204.255.1/ | ||
+ | *> 10.204.255.2/ | ||
+ | *> 10.204.255.3/ | ||
+ | </ | ||
+ | |||
+ | Afficher | ||
+ | <code bash> | ||
get router info routing-table bgp | get router info routing-table bgp | ||
+ | B | ||
+ | B | ||
+ | B | ||
+ | B | ||
+ | B | ||
+ | B | ||
+ | B | ||
</ | </ | ||
+ | <code bash> | ||
+ | # Afficher les peers BGP | ||
+ | get router info bgp neighbors | ||
- | =====Best-practices===== | + | # sniffer les packets BGP sur une interface |
+ | diagnose sniffer packet any "tcp and port 179" 4 0 l | ||
+ | |||
+ | # mettre en place un debug du processus BGP | ||
+ | diagnose ip router bgp all enable | ||
+ | </ | ||
+ | |||
+ | |||
+ | =====Tips===== | ||
====Remove private AS==== | ====Remove private AS==== | ||
Line 144: | Line 201: | ||
end | end | ||
</ | </ | ||
+ | |||
+ | ====soft-reconfiguration==== | ||
+ | |||
+ | Si le routeur n'est pas surchargé en terme de mémoire, on peut activer l' | ||
+ | <code bash> | ||
+ | config router bgp | ||
+ | config neighbor | ||
+ | edit 10.55.202.92 | ||
+ | set soft-reconfiguration enable | ||
+ | end | ||
+ | </ | ||
+ | |||
+ | On a ensuite accès à des commandes plus fines, comme les routes reçues ou envoyées à un voisin spécifique : | ||
+ | <code bash> | ||
+ | get router info bgp neighbors 10.55.200.94 received-route | ||
+ | get router info bgp neighbors 10.55.200.94 advertised-routes | ||
+ | </ | ||
+ |
informatique/fortinet/bgp.txt · Last modified: 2021/11/17 09:11 by pteu