From 4819dfa0907245f7effd9d6cb113a79e7ad7c5b8 Mon Sep 17 00:00:00 2001 From: Yuri Slobodyanyuk Date: Thu, 3 Sep 2020 12:14:05 +0000 Subject: [PATCH] ongoing additions, changes, and fixes --- ...e-debug-diagnose-complete-cheat-sheet.adoc | 25 ++++++++++++++++--- 1 file changed, 21 insertions(+), 4 deletions(-) diff --git a/Fortigate-debug-diagnose-complete-cheat-sheet.adoc b/Fortigate-debug-diagnose-complete-cheat-sheet.adoc index 926215d..208b65d 100644 --- a/Fortigate-debug-diagnose-complete-cheat-sheet.adoc +++ b/Fortigate-debug-diagnose-complete-cheat-sheet.adoc @@ -96,11 +96,26 @@ a| Filter VPN debug messages using various parameters: |Command |Description + +|*diagnose ip router bgp level info* + *diagnose ip router bgp all enable* +| Set BGP debug level to INFO (the default is ERROR which gives very little info) and enable the BGP debug. + +|*exec router clear bgp all* +| Disconnect all BGP peering sessions and clear BGP routes in BGP table and RIB. Use with care, involves downtime. + + |*get router info bgp summary* | State of BGP peering sessions with peers, one per line. |*get router info bgp network * -| Detailed info about from the BGP process table. Output includes all learned via BGP routes, even those not currently installed in RIB. E.g. `get router info bgp network 0.0.0.0/0` +| Detailed info about from the BGP process table. Output includes all learned via BGP routes, even those not currently installed in RIB. E.g. `get router info bgp network 0.0.0.0/0`. The is optional, if absent shows the whole BGP table. + +|*get router info routing-table bgp* +| Show BGP routes actually installed in the RIB. + +|*get router info bgp neighbors* +| Detailed info on BGP peers: BGP version, state, supported capabilities, how many hops away, reson for the last reset. |*get router info bgp neighbors advertised-routes* | Show all routes advertised by us to the specific neighbor. @@ -108,9 +123,11 @@ a| Filter VPN debug messages using various parameters: |*get router info bgp neighbors routes* | Show all routes learned from this BGP peer. It shows routes AFTER filtering on local peer, if any. -|*diagnose ip router bgp level info* - *diagnose ip router bgp all enable* -| Set BGP debug level to INFO (the default is ERROR which gives very little info) and enable the BGP debug. +|*get router info bgp neighbors 12.12.12.12 received-routes* +| Show all received routes from the neighbor BEFORE any local filtering is being applied. It only works if `set soft-reconfiguration enable` is set for this peer under `router bgp` configuration. + +|*diagnose sys tcpsock | grep 179* +| List all incoming/outgoing TCP port 179 sessions for BGP.