efa tenant service bgp peer-group create

Creates a BGP peer group for the specified tenant.

Syntax

efa tenant service bgp peer-group create [ --name peer-group-name | --tenant tenant-name | --descriptionstring|--pg-namestring|--pg-asn string | --pg-bfd string | --pg-bfd-enable string | --pg-remove-private-as stringArray | --pg-next-hop-selfstring|--pg-update-source-ip string | --pg-md5-password string | --pg-md5-password-prompt-enable { true | false } |--pg-ipv4-uc-nbr-prefix-liststring|--pg-ipv4-uc-nbr-route-mapstring|--pg-ipv4-uc-nbr-send-communitystring|--pg-ipv6-uc-nbr-prefix-liststring|--pg-ipv6-uc-nbr-route-mapstring|--pg-ipv6-uc-nbr-send-communitystring]

Parameters

--name peer-group-name: Specifies the name of the BGP peer group instance.
--tenant tenant-name: Specifies the name of the tenant.
--pg-asn string: Specifies the ASN of the BGP peer group with a string in the following format: device-ip:peer-group-name,remote-asn.
--pg-bfd string: Specifies the BFD properties of the BGP peer group with a string in the following format: device-ip: peer-group-name,bfd-enable(true/false),interval,bfd-min-rx,bfd-multiplier.
--pg-bfd-enable string: Turns on BGP peer group with a string in the following format: device-ip,peer-group-name:md5-password.
--pg-name string: Specifies the BGP peer group name with a string in the following format: device-ip:peer-group-name.
--pg-remove-private-as stringArray: Turns the remove-private-as setting on or off per BGP peer group, created for external connectivity, in the following format: device-ip,pg-name:true|false. For example: 10.20.246.16,pg1:true.; By default, the setting is off.
--pg-next-hop-self string: Specifies the next-hop-self for the BGP peer group with a string in the following format: device-ip:peer-group-name,next-hop-self(true/false/always).
--pg-update-source-ip string: Updates the source IP address of the BGP peer group with a string in the following format: device-ip:peer-group-name,update-source-ip.
--pg-md5-password string: Indicates the MD5 password.; Important
BGP MD5 authentication for tenant dynamic peers is not supported.
--pg-md5-password-prompt-enable { true | false }: Turns on secure input for the MD5 password. The default is false.; Important
BGP MD5 authentication for tenant dynamic peers is not supported.
--description string: Describes the BGP peer group.

--pg-ipv4-uc-nbr-prefix-list string: Identifies the IPv4 unicast neighbor with a string in the following format: device-ip,pgname:prefix-list-name,direction(in | out).
--pg-ipv4-uc-nbr-route-map string: Identifies the IPv4 unicast neighbor with a string in the following format: device-ip,pgname:route-map-name,direction(in | out).
--pg-ipv4-uc-nbr-send-community string: Identifies the IPv4 send-community in the following format: device-ip,pgname:send-community (all | both | extended | large | standard | large-and-standard | large-and-extended).
--pg-ipv6-uc-nbr-prefix-list string: Identifies the IPv6 unicast neighbor with a string in the following format: device-ip,pgname:prefix-list-name,direction(in | out).
--pg-ipv6-uc-nbr-route-map string: Identifies the IPv6 unicast neighbor with a string in the following format: device-ip,pgname:route-map-name,direction(in | out).
--pg-ipv6-uc-nbr-send-community string: Identifies the IPv6 send-community in the following format: device-ip,pgname:send-community (all | both | extended | large | standard | large-and-standard | large-and-extended).

Examples

This example creates a peer group instance.

$ efa tenant service bgp peer-group create --name ten1bgppg1 
--tenant ten1 --pg-name 10.20.246.15:pg1 --pg-asn 10.20.246.15,pg1:55001 
--pg-bfd-enable 10.20.246.15,pg1:true 
--pg-remove-private-as 10.20.246.15,pg1:true --pg-name 10.20.246.16:pg1 
--pg-asn 10.20.246.16,pg1:55001 --pg-bfd-enable 10.20.246.16,pg1:true 
--pg-remove-private-as 10.20.246.16,pg1:true

This example creates a BGP peer-group MD5 password in a secure manner. For more information, see the "Configure BGP MD5 Authentication for Tenant BGP Peer and Peer-group Securely" topic in the Extreme Fabric Automation Security Guide, 3.1.0 .

$ efa tenant service bgp peer-group create --tenant "tenant11" 
--name "v1-PeerGrp" --pg-name 10.20.246.5:v1-PeerGrp --pg-asn 10.20.246.5,v1-PeerGrp:5200 
--pg-bfd-enable 10.20.246.5,v1-PeerGrp:true --pg-name 10.20.246.5:v3-PeerGrp 
--pg-asn 10.20.246.5,v3-PeerGrp:5201 --pg-bfd-enable 10.20.246.5,v3-PeerGrp:true 
--pg-name 10.20.246.6:v1-PeerGrp --pg-asn 10.20.246.6,v1-PeerGrp:5200 
--pg-bfd-enable 10.20.246.6,v1-PeerGrp:true --pg-md5-password-prompt-enable=true