![]() ![]() ![]() The Management station has only single IP addresses for FGT1 and FGT2, that can be accessed from any interface, and routed by RTR2 (routing and firewall policies must permit).FGT2 and FGT1 can establish an iBGP peering to their respective loopback interface via Port4 or Port5 (routing and firewall policies must permit).The loopback interface is seen from the routing table as connected interface :Ĭ 10.0.0.2/32 is directly connected, loopback Note 2 : For blackhole static route, use the blackhole route type instead of the loopback interface.īGP peering and Management access scenario : Note 1 : Dynamic routing protocols can be enabled on loopback interfaces Good practice for OSPF : setting the OSPF router ID the same as loopback IP address makes it easier for troubleshooting OSPF and remember the management IP addresses (i.e.Some scenario where a loopback interface can be used: Note that using loopback interfaces requires the configuration of appropriate firewall policies to allow traffic to and from this (those) interface(s) Multiple loopback interfaces can be configured in either non-VDOM mode or in each VDOM. It allows connections to the FortiGate's loopback IP address without depending on one specific external port, and it is therefore possible to access it through several physical or VLAN interfaces (redundancy). The advantage of a interface it that this logical interface is always up (no physical link dependency) and the attached subnets always present in the routing table. This article describes some scenario where a loopback interface can be used. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |