PAN-OS OpenConfig Administrator’s Guide
    : BGP Behavior
    Focus
    Download PDF
    Focus
    1. Home
    2. OpenConfig
    3. PAN-OS OpenConfig Administrator’s Guide
    4. OpenConfig Models
    5. BGP
    6. BGP Behavior
    Download PDF

    PAN-OS OpenConfig Administrator’s Guide

    BGP Behavior

    Table of Contents

    BGP Behavior

    PAN-OS specific behavior for the openconfig-bgp model.
    Review the deviation file before using the openconfig-bgp model to familiarize yourself with supported paths.
    When using the BGP model with PAN-OS firewalls:
    • You can enable multipath configuration by setting ECMP globally at the virtual router level.
    • Setting /bgp/global/graceful-restart requires the use of an integer, but the Get request response returns a string.
    For neighbors:
    • The peer-type field is set at the peer-group level, it returns the same value if the neighbor value is identical.
    • Setting an auth password on a set request creates an auth profile. On the Get request, the response comes back as an encrypted value string.
    • Using a local-interface requires you to have an already configured interface. To set the local-address, you must use the transport child container in a Set request.
    • Setting /bgp/neighbors/neighbor/timers requires the use of an integer, but the Get request response returns a string.
    • Descriptions support hyphens, underscores, and periods.

    RIB

    For the RIB Model, PAN-OS OpenConfig:
    • only supports peers with valid IPv6 addresses as names or hyphen format such as 2001-98-98-98--1 for the corresponding IPv6 address is 2001:98:98:98::1.
    • Extended-communities returns as binary while the hex value is returned by the XML-API.
    • /bgp/rib/attr-sets and /bgp/rib/afi-safis/afi-safi/ipv4-unicast/loc-rib/routes can’t be filtered.

    Recommended For You

    © 2024 Palo Alto Networks, Inc. All rights reserved.