How to block default in Fortigate via BGP

Problem:

Solution:

config router access-list
edit “Block_Def_Route”
config rule
edit 1
set action deny
set exact-match enable
next
edit 2
set exact-match disable
next
end
next
end

config router bgp
config neighbor
edit “10.40.15.1”
set distribute-list-in “Block_Def_Route”
set remote-as 6167
set route-map-out “Verizon_Prepend1”
next
edit “10.40.16.1”
set distribute-list-in “Block_Def_Route”
set remote-as 6167
set route-map-out “Verizon_Prepend”
next
end
end

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s