https://community.cisco.com/t5/network-security/cisco-ftd-bgp-two-instance-two-different-as-number/m-p/5368125#M1124387 <P>Hello&nbsp;<a href="https://community.cisco.com/t5/user/viewprofilepage/user-id/339847">@mikiNet</a>&nbsp;</P> <P>ASN with network equipment ? Firewall_routers =&gt; Only one AS possible ! You cannot run multiple local ASNs as the same time in one BGP process. Some network equipment permit with the command "local-as" to established bgp session with neighbor with a "fake" asn...</P> <P>&nbsp;</P> Fri, 06 Feb 2026 10:12:31 GMT M02@rt37 2026-02-06T10:12:31Z https://community.cisco.com/t5/network-security/cisco-ftd-bgp-two-instance-two-different-as-number/m-p/5368121#M1124386 <P>Dear Team,</P> <P>I have a problem related to BGP configuration. I have below topology:</P> <P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="mikiNet_1-1770370545472.png" style="width: 400px;"><img src="https://community.cisco.com/t5/image/serverpage/image-id/259157i312B0E503EC45E2C/image-size/medium?v=v2&amp;px=400" role="button" title="mikiNet_1-1770370545472.png" alt="mikiNet_1-1770370545472.png" /></span></P> <P>I want to run two BGP instance (two AS number on FTD):</P> <P>1. BGP AS 49001, where FTD will establish iBGP with upper router</P> <P>2. BGP AS 65001, where FTD will establish eBGP with down router (his AS 65002)</P> <P>But I don't see any possiblity to run two BGP on FTD. On General Setting I have only option to put ONE AS Number...</P> <P>Also when I create VRF, I still option to use ONE AS..</P> <P>Is it possible to run two AS on same FTD ?&nbsp;</P> Fri, 06 Feb 2026 09:39:03 GMT https://community.cisco.com/t5/network-security/cisco-ftd-bgp-two-instance-two-different-as-number/m-p/5368121#M1124386 mikiNet 2026-02-06T09:39:03Z https://community.cisco.com/t5/network-security/cisco-ftd-bgp-two-instance-two-different-as-number/m-p/5368125#M1124387 <P>Hello&nbsp;<a href="https://community.cisco.com/t5/user/viewprofilepage/user-id/339847">@mikiNet</a>&nbsp;</P> <P>ASN with network equipment ? Firewall_routers =&gt; Only one AS possible ! You cannot run multiple local ASNs as the same time in one BGP process. Some network equipment permit with the command "local-as" to established bgp session with neighbor with a "fake" asn...</P> <P>&nbsp;</P> Fri, 06 Feb 2026 10:12:31 GMT https://community.cisco.com/t5/network-security/cisco-ftd-bgp-two-instance-two-different-as-number/m-p/5368125#M1124387 M02@rt37 2026-02-06T10:12:31Z https://community.cisco.com/t5/network-security/cisco-ftd-bgp-two-instance-two-different-as-number/m-p/5368241#M1124391 <P>Hi,</P> <P><a href="https://community.cisco.com/t5/user/viewprofilepage/user-id/339847">@mikiNet</a>&nbsp;Don't overcomplicate it using a VRF / separate Virtual Router. Recommend to run BGP in AS 49001 too establish iBGP upstream and for eBGP peering downstream use&nbsp;<STRONG>local-as</STRONG> functionality when configuring the eBGP neighbor (found under Migration tab). To ensure you can advertise BGP best-paths between your eBGP and iBGP neighbors, and these will not reject the updates due to AS loop prevention, when using&nbsp;<STRONG>local-as&nbsp;</STRONG>functionality, ensure to check minimum the first two knobs as well (Do not prepend local AS, Replace Real AS).</P> <P>Thanks,</P> <P>Cristian.</P> Fri, 06 Feb 2026 16:41:07 GMT https://community.cisco.com/t5/network-security/cisco-ftd-bgp-two-instance-two-different-as-number/m-p/5368241#M1124391 Cristian Matei 2026-02-06T16:41:07Z