it would be better if you have introduced the prefix network too, which is used to advertise the exact network subnet through BGP. config neighbor edit "example1" set capability-graceful-restart enable set soft-reconfiguration enable set remote-as 65007 set route-map-in "INcoming-Subnet" set route-map-out "OUTgoing-subnet" this would help to advertise only the interesting network both ways. helpfully video thanks.
I have two tunnels using (wan1 & wan2) from FortiGate101F to AWS and running BGP over tunnel. I want to influence traffic through specific tunnel1 if tunnel 1 goes down failover to tunnel2. How do I do please helm me I'm new to FortiGate.
It should be very straighforward for BGP. Is your IPSec tunnel up? Try it first without BGP to make sure network is connecting to each other using static route.
![[Fortigate] Redundant IPsec VPN with SD-WAN. SD-WAN IPsec tunnel](http://i.ytimg.com/vi/Ye4GUmcU_Ks/mqdefault.jpg)
![Lil Uzi Vert - Chill Bae [Official Music Video]](http://i.ytimg.com/vi/D7F42F_JM3U/mqdefault.jpg)
it would be better if you have introduced the prefix network too, which is used to advertise the exact network subnet through BGP.
config neighbor
edit "example1"
set capability-graceful-restart enable
set soft-reconfiguration enable
set remote-as 65007
set route-map-in "INcoming-Subnet"
set route-map-out "OUTgoing-subnet"
this would help to advertise only the interesting network both ways.
helpfully video thanks.
Nice video
do you have same for OSPF ?
I have two tunnels using (wan1 & wan2) from FortiGate101F to AWS and running BGP over tunnel. I want to influence traffic through specific tunnel1 if tunnel 1 goes down failover to tunnel2. How do I do please helm me I'm new to FortiGate.
you can use BGP to append a couple of as-path as the control where it goes.
Unfortunately I can't get bgp to work in the lab. complains the neighbour is administratively shutdown. tunnel comes up with static route.
It should be very straighforward for BGP. Is your IPSec tunnel up? Try it first without BGP to make sure network is connecting to each other using static route.