Some good presetation on BGP Links https://www.sanog.org/resources/sanog33/SANOG33_Tutorials-BGP_Communities_and_Geotags-Muhammad_Moinur_Rahman-DZCRD.pdf https://www.denog.de/media/DENOG10/day2_0900_communities-no-anim.pdf https://nsrc.org/workshops/2014/afnog-are/raw-attachment/wiki/Agenda/09-BGP-Communities.pdf
BGP – Check Point Clish
Adding Check Point to the BGP setup. clish configshow bgp summaryshow bgp peer 10.255.2.5 detailedshow bgp peer 10.255.2.5 receivedshow route bgpRestarting BGP Peers in Gaia Clish clish config set as 65532 set bgp external remote-as 65001 on set bgp external remote-as 65001 peer 10.255.2.5 on set bgp external remote-as 65001 peer 10.255.2.5 route-refresh on set inbound-route-filter …
BGP – Do not advertise a network
Remove routes from Advertisement on a Forigate firewall Not to myself: 10.255.32.0/20 was wired on C1, local pref was missing. so it might make sens to add this to all incoming routes 'set local-preference 100', incoming there is no issue. show router route-map show router route-map config router route-map edit "EBGP-OUT-R2" config rule edit 1 …
BGP – Prevent becoming a Transit-AS
AS-Path FilteringNo-export CommunityPrefix-list FilteringDistribute List Filtering AS-Path Filtering ip as-path access-list 1 permit ^$ neighbor x.x.x.x filter-list 1 out No-export Community ip bgp-community new-format route-map NO-EXPORT ​set community no-export neighbor x.x.x.x route-map NO-EXPORT in neighbor x.x.x.x send-community Prefix-list Filtering ip prefix-list NO-TRANSIT permit x.x.x.x/x neighbor x.x.x.x prefix-list NO-TRANSIT out Distribute List Filtering access-list x deny x.x.x.x y.y.y.y …
BGP – MultiHoming
Cisco cisco01config show ip bgp summaryshow ip routeshow ip bgpcisco02config show ip bgp summaryshow ip routeEdgeRouter-Xedge01configshow ip routeedge02configshow ip routeFortiGateconfigget router info routing-table detailsTestsChanging the AS Numbersshow ip routeshow ip bgpOptimizing route mapscisco1show ip bgp neighbors 10.255.80.29 received-routesshow ip bgpshow ip routecisco2show ip bgp neighbors 10.255.80.28 received-routesshow ip routeBGP Prevent becoming an Transit ASNo-Export CommunityLinks …
Patrick Marc's Networks 