04-10-2022
05:47 AM
- last edited on
04-23-2022
02:49 AM
by
Translator
Dear ALL,
I'm setting up the the two tier firewall architecture( internet facing firewall is fortinet and the second tier firewall is cisco FTD), i received the default route 0.0.0.0 0.0.0.0 from fortinet firewall via eBGP(fortinet(ASN:64520) and cisco(ASN:64450) is using EBGP connection), I had created the route-map in OSPF redistribution for default route, but i can't receive it from the internal switch.
Anyone can help?
Network Diagram
Fortinet(ASN:64520)->eBGP<-Cisco FTD(ASN:64450)->OSPF<-Cisco C3750E
Thanks.
Support
Solved! Go to Solution.
04-10-2022
12:03 PM
- last edited on
04-23-2022
03:00 AM
by
Translator
Dear Paul,
i got the other problem, now the BGP redistribute the default route to OSPF with
no always
is work, but in the reverse side, i found if the site A down, the default route is learn from site B, the FTD and the internal switch can learn the default route without problem, but the fortigate can't receive the default route. if i enabled "Generate default routes", this is permanently route even the cant recevie the from site B.
04-11-2022
07:18 AM
- last edited on
04-23-2022
02:48 AM
by
Translator
Friend can not find because between fortigate and FTD there is no OSPF there is BGP and you must config the FTD to redistribute the OPSF into FTD to make fortigate.
fortigate-BGP-FTD-ospf-Core SW
I see one solution before and it fit to your case,
make BGP bypass FTD
i.e. config eBGP between the Core and fortigate and config static route in FTD.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide