Refer to the exhibits. An administrator is attempting to advertise the network configured on port3. However, FGT-A is not receiving the prefix. Which two actions can the administrator take to fix this problem? (Choose two.)
A.
Modify the prefix using the network command from 172.16.0.0/16 to 172.16.54.0/24.
B.
Manually add the BGP route on FGT-A.
C.
Restart BGP using a soft reset to force both peers to exchange their complete BGP routing tables.
D.
Use the set network-import-check disable command.
You can also use the network command to configure FortiGate BGP to advertise prefixes. However, an exact
match of the prefix in the network command must be active in the routing table. If the routing table doesn’t
contain an active route with a destination subnet that matches the prefix, FortiGate doesn’t advertise the prefix. Pagina 388 Enterprise_Firewall_7.2_Study
There are two ways to fix the issue in troubleshooting scenario 2. The first way is to change the prefix
manually to represent the network assigned.
The other option is to disable the set network-import-check. This is the safety mechanism that
prevented FortiOS from advertising the falsely configured route. Disabling this mechanism is generally not
recommended because this mechanism is what ensures that only the correct networks are advertised, which
avoids routing issues. Pagina 420 - 421 Network_Security_Support_Engineer_7.4_Study_Guid
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
IBB90704
2 months, 2 weeks ago