FortiGate routing table commands

Network Engineers often check the routing table during troubleshooting.In this article we will discuss how to check the routing table using CLI.

To view RIB

FG-FW-01 # get router info routing-table all

Sample output:

FG-FW-01 # get router info routing-table all

Codes: K - kernel, C - connected, S - static, R - RIP, B - BGP

O - OSPF, IA - OSPF inter area

N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2

E1 - OSPF external type 1, E2 - OSPF external type 2

i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area

V - BGP VPNv4

* - candidate default

Routing table for VRF=0

S* 0.0.0.0/0 [5/0] via 192.168.8.1, port1, [1/0]

C 172.17.10.0/24 is directly connected, vlan10

C 192.168.8.0/24 is directly connected, port1

Note:

This is the standard routing table that contains active/ best routes.

This is visible on the CLI and GUI.

To view the FIB (routing table from the kernal's perspective)

FG-FW-01 # get router info kernal

Sample output:

    FG-FW-01 # get router info kernel 
  

    tab=255 vf=0 scope=253 type=3 proto=2 prio=0
    0.0.0.0/0.0.0.0/0->172.17.10.0/32 pref=172.17.10.1 gwy=0.0.0.0
    dev=10(vlan10)
  

    tab=255 vf=0 scope=253 type=3 proto=2 prio=0
    0.0.0.0/0.0.0.0/0->192.168.8.0/32 pref=192.168.8.103 gwy=0.0.0.0
    dev=3(port1)
  

Note:

This is the routing table from the kernel's perspective.

This is used for route lookups.

This is derived from the RIB.

This is visible only via CLI.

To view the routing table database

FG-FW-01 # get router info routing-table database

Sample output:

FG-FW-01 # get router info routing-table database

Codes: K - kernel, C - connected, S - static, R - RIP, B - BGP

O - OSPF, IA - OSPF inter area

N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2

E1 - OSPF external type 1, E2 - OSPF external type 2

i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area

V - BGP VPNv4

> - selected route, * - FIB route, p - stale info

Routing table for VRF=0

S *> 0.0.0.0/0 [5/0] via 192.168.8.1, port1, [1/0]

C *> 172.17.10.0/24 is directly connected, vlan10

C *> 192.168.8.0/24 is directly connected, port1

Note:

All the standby routes are installed in the routing table database.

Ticker

FortiGate routing table commands

Posted by Aaqil

Post a Comment

0 Comments

Most Popular

How to Hide Your Youtube Channels Subscription - 2023

How to use interface-range command on Juniper Switch | vQFX | EVE-NG

How to navigate to Cisco Meraki Switch's Live Tools

Subscribe Us

Facebook

Blog Archive

Tags

Follow us

Contact Us

Popular Posts

How to Hide Your Youtube Channels Subscription - 2023

How to use interface-range command on Juniper Switch | vQFX | EVE-NG

How to navigate to Cisco Meraki Switch's Live Tools

Footer Menu Widget

Contact form

Ticker

FortiGate routing table commands

Posted by Aaqil

You may like these posts

Post a Comment

0 Comments

Most Popular

How to Hide Your Youtube Channels Subscription - 2023

How to use interface-range command on Juniper Switch | vQFX | EVE-NG

How to navigate to Cisco Meraki Switch's Live Tools

Subscribe Us

Facebook

Blog Archive

Tags

Follow us

Contact Us

Popular Posts

How to Hide Your Youtube Channels Subscription - 2023

How to use interface-range command on Juniper Switch | vQFX | EVE-NG

How to navigate to Cisco Meraki Switch's Live Tools

Footer Menu Widget

Contact form