efa tenant service bgp peer-group create
Creates a BGP peer group for the specified tenant.
Syntax
Parameters
- --name peer-group-name
- Specifies the name of the BGP peer group instance.
- --tenant tenant-name
- Specifies the name of the tenant.
- --pg-asn string
- Specifies the ASN of the BGP
peer group with a string in the following format:
device-ip:peer-group-name,remote-asn. - --pg-bfd string
- Specifies the BFD properties
of the BGP peer group with a string in the following format:
device-ip: peer-group-name,bfd-enable(true/false),interval,bfd-min-rx,bfd-multiplier. - --pg-bfd-enable string
- Turns on BGP peer group with
a string in the following format:
device-ip,peer-group-name:md5-password. - --pg-name string
- Specifies the BGP peer group
name with a string in the following format:
device-ip:peer-group-name. - --pg-remove-private-as stringArray
- Turns the
remove-private-assetting on or off per BGP peer group, created for external connectivity, in the following format:device-ip,pg-name:true|false. For example:10.20.246.16,pg1:true. - --pg-next-hop-self string
- Specifies the next-hop-self
for the BGP peer group with a string in the following format:
device-ip:peer-group-name,next-hop-self(true/false/always). - --pg-update-source-ip string
- Updates the source IP address
of the BGP peer group with a string in the following format:
device-ip:peer-group-name,update-source-ip. - --pg-md5-password string
- Indicates the MD5 password.
-
Important
BGP MD5 authentication for tenant dynamic peers is not supported. - --pg-md5-password-prompt-enable { true | false }
- Turns on secure input for the MD5 password. The default is false.
-
Important
BGP MD5 authentication for tenant dynamic peers is not supported. - --description string
- Describes the BGP peer group.
- --pg-ipv4-uc-nbr-prefix-list string
- Identifies the IPv4 unicast neighbor with a string in the following format:
device-ip,pgname:prefix-list-name,direction(in | out). - --pg-ipv4-uc-nbr-route-map string
- Identifies the IPv4 unicast neighbor with a string in the following format:
device-ip,pgname:route-map-name,direction(in | out). - --pg-ipv4-uc-nbr-send-community string
- Identifies the IPv4 send-community in the following format: device-ip,pgname:send-community (all | both | extended | large | standard | large-and-standard | large-and-extended).
- --pg-ipv6-uc-nbr-prefix-list string
- Identifies the IPv6 unicast neighbor with a string in the following format:
device-ip,pgname:prefix-list-name,direction(in | out). - --pg-ipv6-uc-nbr-route-map string
- Identifies the IPv6 unicast neighbor with a string in the following format:
device-ip,pgname:route-map-name,direction(in | out). - --pg-ipv6-uc-nbr-send-community string
- Identifies the IPv6 send-community in the following format: device-ip,pgname:send-community (all | both | extended | large | standard | large-and-standard | large-and-extended).
Examples
This example creates a peer group instance.$ efa tenant service bgp peer-group create --name ten1bgppg1 --tenant ten1 --pg-name 10.20.246.15:pg1 --pg-asn 10.20.246.15,pg1:55001 --pg-bfd-enable 10.20.246.15,pg1:true --pg-remove-private-as 10.20.246.15,pg1:true --pg-name 10.20.246.16:pg1 --pg-asn 10.20.246.16,pg1:55001 --pg-bfd-enable 10.20.246.16,pg1:true --pg-remove-private-as 10.20.246.16,pg1:trueThis example creates a BGP peer-group MD5 password in a secure manner. For more information, see the "Configure BGP MD5 Authentication for Tenant BGP Peer and Peer-group Securely" topic in the Extreme Fabric Automation Security Guide, 3.1.0 .
$ efa tenant service bgp peer-group create --tenant "tenant11" --name "v1-PeerGrp" --pg-name 10.20.246.5:v1-PeerGrp --pg-asn 10.20.246.5,v1-PeerGrp:5200 --pg-bfd-enable 10.20.246.5,v1-PeerGrp:true --pg-name 10.20.246.5:v3-PeerGrp --pg-asn 10.20.246.5,v3-PeerGrp:5201 --pg-bfd-enable 10.20.246.5,v3-PeerGrp:true --pg-name 10.20.246.6:v1-PeerGrp --pg-asn 10.20.246.6,v1-PeerGrp:5200 --pg-bfd-enable 10.20.246.6,v1-PeerGrp:true --pg-md5-password-prompt-enable=true