informatique:fortinet:bgp
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
informatique:fortinet:bgp [2018/08/28 06:43] – [Vérifications] pteu | informatique:fortinet:bgp [2021/10/27 17:01] – [Vérifications] pteu | ||
---|---|---|---|
Line 122: | Line 122: | ||
=====Vérifications===== | =====Vérifications===== | ||
+ | Diagnostique et configuration du process BGP | ||
<code bash> | <code bash> | ||
- | # diag conf et process BGP | ||
get router bgp | get router bgp | ||
get router info bgp summary | get router info bgp summary | ||
+ | </ | ||
- | # voir le status des protocoles de routages | + | Voir le status des protocoles de routage dynamiques |
+ | <code bash> | ||
get router info protocols | get router info protocols | ||
+ | # [..] résultat de la commande limité au BGP | ||
+ | Routing Protocol is "bgp 65425" | ||
+ | IGP synchronization is disabled | ||
+ | Automatic route summarization is disabled | ||
+ | Default local-preference applied to incoming route is 100 | ||
+ | Redistributing: | ||
+ | Neighbor(s): | ||
+ | Address | ||
+ | 10.55.200.94 | ||
+ | </ | ||
- | # voir les routes apprises en BGP | + | Afficher |
- | get router info routing-table bgp | + | <code bash> |
- | # afficher | + | get router info bgp network |
- | get router info bgp networks | + | BGP table version is 8, local router ID is 10.204.255.2 |
+ | Status codes: s suppressed, d damped, h history, * valid, > best, i - internal, | ||
+ | S Stale | ||
+ | Origin codes: i - IGP, e - EGP, ? - incomplete | ||
- | # afficher les peers BGP | + | |
- | get router info bgp neighbors | + | *> 10.31.0.24/ |
+ | *> 10.55.200.92/ | ||
+ | *> 10.55.200.94/ | ||
+ | *> 10.55.200.254/ | ||
+ | *> 10.143.0.24/ | ||
+ | *> 10.143.6.8/ | ||
+ | *> 10.143.8.8/ | ||
+ | *> 10.204.241.1/ | ||
+ | *> 10.204.255.1/ | ||
+ | *> 10.204.255.2/ | ||
+ | *> 10.204.255.3/ | ||
+ | </ | ||
+ | Afficher les routes BGP présentes dans la table de routage | ||
+ | <code bash> | ||
+ | get router info routing-table bgp | ||
+ | B | ||
+ | B | ||
+ | B | ||
+ | B | ||
+ | B | ||
+ | B | ||
+ | B | ||
+ | </ | ||
+ | |||
+ | <code bash> | ||
# sniffer les packets BGP sur une interface | # sniffer les packets BGP sur une interface | ||
diagnose sniffer packet any "tcp and port 179" 4 0 l | diagnose sniffer packet any "tcp and port 179" 4 0 l | ||
Line 145: | Line 184: | ||
</ | </ | ||
- | =====Best-practices===== | + | |
+ | ====Voisins==== | ||
+ | |||
+ | <code bash> | ||
+ | # Afficher les peers BGP | ||
+ | get router info bgp neighbors | ||
+ | |||
+ | # Affichage des routes envoyées à un peer: | ||
+ | get router info bgp neighbors 10.55.200.94 advertised-routes | ||
+ | [..] | ||
+ | |||
+ | # ... et celles reçue de ce peer: | ||
+ | get router info bgp neighbors 10.55.200.94 received-routes | ||
+ | [..] | ||
+ | </ | ||
+ | |||
+ | |||
+ | =====Tips===== | ||
====Remove private AS==== | ====Remove private AS==== | ||
Line 158: | Line 214: | ||
end | end | ||
</ | </ | ||
+ | |||
+ | ====soft-reconfiguration==== | ||
+ | |||
+ | Si le routeur n'est pas surchargé en terme de mémoire, on peut activer l' | ||
+ | <code bash> | ||
+ | config router bgp | ||
+ | config neighbor | ||
+ | edit 10.55.202.92 | ||
+ | set soft-reconfiguration enable | ||
+ | end | ||
+ | </ | ||
+ | |||
+ | On a ensuite accès à des commandes plus fines, comme les routes reçues pour un voisin spécifique : | ||
+ | <code bash> | ||
+ | get router info bgp neighbors 193.55.200.254 received-route | ||
+ | </ | ||
+ |
informatique/fortinet/bgp.txt · Last modified: 2021/11/17 09:11 by pteu