mdamores Posted 2024-Feb-29 11:17
  
Below are 2 ways to  verify whether or not BGP status is established in Sangfor NGAF

1. Login to the device
- Access the Sangfor NGAF Management interface (thru GUI or CLI)
- login using the default IP address of the management interface (eth0)

2. configure both external or internal interfaces
- configure the external network interface (ex: eth2)
     - set the network interface as external
     - assign an IP address
     - specify the next hop address
- configure the internal network interface (ex: eth3)
     - set the network interface as internal
     - assign an IP address
3. Routing setup
- configure the default route to 0.0.0.0/0 pointing to the front router
- create static routes for each network segments to the layer 3 switch for internal network segments across layer 3
4. configure NAT policies
- Source NAT:  convert intranet zone source address to the outgoing interface address
- Destination Zone: custom external network zone
- Destination address: all
- Services: Any
5. Application Control Policy
- allow traffic from internal to external
     - Source zone:  custom internal network zone
     - Source Address: custom internal network
     - Destination zone: Custom external zone
     - Destination address: All
     - Services: Any
     - Applications: All

Check the BGP neighbor ship status after these configurations and make sure that the status shows "Established" to confirm that it is operational
MTR Lv2Posted 2024-Mar-01 00:56
  
To determine whether the BGP (Border Gateway Protocol) status is established or not in the Next-Generation Application Firewall (NGAF), you can use the following steps:

Log in to NGAF Console: Access the NGAF management console using your preferred web browser or terminal emulator.

Navigate to BGP Configuration: Locate the BGP configuration section within the NGAF management interface. This may be found under the networking or routing configuration settings.

Check BGP Status: Look for a section or status indicator that provides information about the BGP peer connections. It should indicate whether the BGP status is established or not.

CLI Command: If you have access to the command-line interface (CLI) of NGAF, you can use BGP-specific commands to check the status. For example, you can use the "show ip bgp summary" command to display the status of BGP connections.

Consult NGAF Documentation: Refer to the NGAF documentation or user manual for specific instructions on checking the BGP status. The documentation may provide detailed steps and commands for verifying the BGP status within NGAF.

I Can Help:

Change

Moderator on This Board

11
8
5

Started Topics

Followers

Follow

1
3
6

Started Topics

Followers

Follow

0
4
5

Started Topics

Followers

Follow

67
20
3

Started Topics

Followers

Follow

3
14
3

Started Topics

Followers

Follow

1
139
3

Started Topics

Followers

Follow

Board Leaders