BGP

Question 1

RIBs

Answer 1

Routes are stored in Routing information Bases

RIB-in:
Routing information learned from inbound update messages
Contains unprocessed routing info advertised to the local BGP speaker by its peers

Local RIB:
Routing info the the BGP speaker selects after applying its local policies to the RIB-in

RIB-out:
Routing info that the local BGP speaker selects to advertise to its peers

Question 2

BGP Attributes

Answer 2

Well-known mandatory. (Origin, AS_PATH, NEXT_HOP)

Well-know discretionary (optional) (LOCAL_PREF, ATOMIC_AGGREGATE)

Optional transitive - optional and can be passed outside of the local AS (AGGREGATOR, COMMUNITY)

Optional non-transitive:
optional and can NOT be passed outside of the local AS (MULTI_EXIT_DISC)

Question 3

BGP Route Selection Tie Breakers

Answer 3

1. Highest Weight
2. Highest local preference
3. Route originated by the local router (next hop = 0.0.0.0)
4. Shortest AS path
5. Lowest origin type
6. Lowest multi-exit discriminator (MED)
7. Prefer external paths (EBGP) over internal paths (IBGP)
8. Path through closest IGP neighbor
9. Oldest route for EBGP paths
10. Lowest neighbor BGP router ID
11. Lowest neighbor IP address

Question 4

BGP states

Answer 4

Idle: Initial State
Connect: Waiting for a successful three-way TCP connection
Active: Unable to establish TCP session
OpenSent: Waiting for an OPEN message from the peer
OpenConfirm: Waiting for the keepalive message from the peer
Established: Peers have successfully exchanged OPEN and keepalive messages

Question 5

BGP summary command

Answer 5

get router info bgp summary

Columns-

AS - Remote AS

MsgRcvd and MsgSent - Packet count received/sent

Up/Down - How long the connection has been up

State/PfxRcd - Neighbor state and prefixers received

Question 6

BGP neighbors command

Answer 6

get router info bgp neighbors

Question 7

Command to see prefixes advertised by local FGT

Answer 7

get router info bgp neighbors (local IP address) advertised-routes

Question 8

Command to see prefixes advertised by Neighbor

Answer 8

get router info bgp neighbors (neighbor IP) route

Question 9

Command to show prefixes by All BGP Peers

Answer 9

get router info bgp network

Origin codes -

i = IBGP, indicates the network command was used to advertise a route.

? = incomplete, indicates the the route was advertised from another routing protocol using redistribution

e = EBGP, legacy route advertisement

Question 10

BGP event logging

Answer 10

enabled by default:
config router bgp
set log-neighbour-change enable | disable
end

Shows these events:
Neighbor down/up
RIB update
BGP message exchange
Errors connecting to neighbors

can be seen in GUI under Log & Report > System Events > Router Events

Question 11

Port for BGP

Answer 11

TCP/179

Question 12

Real-time Debug command for BGP

Answer 12

diagnose ip router bgp all enable
diagnose ip router bgp level info
diagnose debug enable

to disable:
diagnose ip router bgp all disable
diagnose ip router bgp level none
diagnose debug enable

diagnose debug reset does NOT stop BGP bebug

Question 13

Restart BGP commands

Answer 13

execute router clear bgp (options)

all (arguments)
in
in prefix-filter
out
-These resets BGP process and requires FGT to establish BGP peering again

soft (in|out) - Resends complete BGP table

Question 14

network-import-check

Answer 14

can disable, that allows FortiOS to advertise falsely configured routes (not recommended)

Question 15

T or F: Prefix list rules are all inspected unlike firewall policies

Answer 15

True