0 оценок0% нашли этот документ полезным (0 голосов)
67 просмотров5 страниц
The Routing sub-section allows the administrator to confgure the Gateway Policies, RlP and Static Routes aspects of The Routing facility. The BGP (Border Gateway Protocolj sub-section displays the name, type and description of all BGP protocols. The administrator is able to edit, delete and create new BGPs from this sub-section.
The Routing sub-section allows the administrator to confgure the Gateway Policies, RlP and Static Routes aspects of The Routing facility. The BGP (Border Gateway Protocolj sub-section displays the name, type and description of all BGP protocols. The administrator is able to edit, delete and create new BGPs from this sub-section.
Авторское право:
Attribution Non-Commercial (BY-NC)
Доступные форматы
Скачайте в формате PDF, TXT или читайте онлайн в Scribd
The Routing sub-section allows the administrator to confgure the Gateway Policies, RlP and Static Routes aspects of The Routing facility. The BGP (Border Gateway Protocolj sub-section displays the name, type and description of all BGP protocols. The administrator is able to edit, delete and create new BGPs from this sub-section.
Авторское право:
Attribution Non-Commercial (BY-NC)
Доступные форматы
Скачайте в формате PDF, TXT или читайте онлайн в Scribd
Reference B: System Parameters 2.5. Pout|ng The Routing sub-section allows the administrator to confgure the Gateway Policies, RlP and Static Routes aspects of the Routing facility. 2.5..1 0P The BGP (Border Gateway Protocolj sub-section displays the name, type and description of all BGP protocols. The administrator is able to edit, delete and create new BGPs from this sub-section. Tab|e 2.5.6.1a: Congure > Network > Rout|ng > BGP F|e|d Name F|e|d Type Va|ue Range Descr|pt|on EnabIe Checkbox Enabled/Disabled Enables the BGP interface and starts the service. Default is unselected. Router AS Text Up to 5 characters The number assigned to a router or set of routers in a single technical administration. Router ID Text Up to 31 characters Router ID number. Networks Pulldown, Text ???, <USER DEFINED>, all defned networks, *EDIT*; A selection for the network(s) which will use BGP. Advanced Automatic PoIicies Checkbox Enabled/Disabled Enables the frewall to generate a set of automatic policies to allow a confgured BGP interface to function properly. The policy created is for TCP port 179 and is viewable in the Monitor> Activity>Security PoIicies>Automatic section. Default is selected. Red|str|bute (Categor|es for Connected, OSPF, RIP, and Stat|c| EnabIe Checkbox Enabled/Disabled A toggle for whether redistribution should be used or not. Metric Checkbox, Text Enabled/Disabled, Up to 2 characters Confgure the metric when the route is redistributed. Route Aggregat|on Aggregate Addresses Pulldown ???, <USER DEFINED>, all defned networks, *EDIT* The network(s) to aggregate. AS Set Checkbox Enabled/Disabled This selection will generate or send the AS set of other routers to the remote router. Default is unselected. Summary OnIy Checkbox Enabled/Disabled This selection flters the more specifc routes when sending updates. Default is unselected. To edit an existing BGP interface, select the icon. To create a new BGP interface, select the lcon. Tab|e 2.5.6.1b: Congure > Network > Rout|ng > BGP > Ed|t BGP Interface F|e|d Name F|e|d Type Va|ue Range Descr|pt|on DisabIe Checkbox Enabled/Disabled Disables the BGP interface. Default is unselected. Description Text Up to70 characters A short description to identify the BGP interface. Neighbor Text Up to 31 characters A selection for the IP address used to confgure the peer routers the frewall will use to connect to BGP. Remote AS Text Up to 5 characters The AS number of the peer router. Advertise DefauIt Route Checkbox Enabled/Disabled Enable if the frewall will advertise itself as the default route. Default is unselected. 222 GB-OS 6.0 User's Guide Reference B: System Parameters Tab|e 2.5.6.1b: Congure > Network > Rout|ng > BGP > Ed|t BGP Interface Advanced Next Hop SeIf Checkbox Enabled/Disabled This selection disables the NEXT HOP SELF attribute for BGP. Default is unselected. 2.5..2 0ateWay Po||c|es The Gateway Policies sub-section displays the name, type and description of all defned gateway policies. The administrator is able to enable or disable various options in this sub-section. Tab|e 2.5.6.2a: Congure > Network > Rout|ng > Gateway Po||c|es F|e|d Name F|e|d Type Va|ue Range Descr|pt|on Gateway Fa||over EnabIe Checkbox Enabled/Disabled A toggle for whether gateway failover capabilities should be used or not. Default is unselected. Advanced Add Static Routes For Beacons Checkbox Enabled/Disabled A toggle for whether static routes should be added for defned beacons. Default is selected. Ping Secondary OnIy if Primary Down Checkbox Enabled/Disabled A toggle for whether the failover gateway should be pinged only if pinging the primary gateway is unsuccessful. Default is unselected. Gateway Shar|ng EnabIe Checkbox Enabled/Disabled A toggle for whether traffc connection sharing between the selected gateways should be enabled or not. Default is unselected. Po||cy Based Rout|ng EnabIe Checkbox Enabled/Disabled A toggle for whether the ability to select a gateway for connections with outbound policies should be enabled or not. Default is unselected. Source Rout|ng EnabIe Checkbox Enabled/Disabled A toggle for whether the ability to select a return gateway for connections with inbound policies or not. Default is unselected. The Edit Gateway Policy screen can be accessed by selecting along the top right of the Gateway Policies screen. Tab|e 2.5.6.2b: Congure > Network > Rout|ng > Ed|t Gateway Po||c|es F|e|d Name F|e|d Type Va|ue Range Descr|pt|on DisabIe Checkbox Enabled/Disabled A toggle for whether gateway policy should be used or not. Default is unselected. Name Text Up to 19 characters A unique identifer for the gateway policy, used for reference elsewhere in the confguration. Description Text Up to 79 characters A description used to further identify the gateway policy. Route Pulldown ???, <USER DEFINED>, all defned dynamic, external interfaces A selection for the route to be used by the gateway policy. IP Address Text Up to 15 characters The IP address of the gateway policy`s route if <USER DEFINED> is selected in ROUTE. 223 GB-OS 6.0 User's Guide Reference B: System Parameters Tab|e 2.5.6.2b: Congure > Network > Rout|ng > Ed|t Gateway Po||c|es Fa||over EnabIe Checkbox Enabled/Disabled A toggle for whether gateway failover should be enabled for the gateway policy (if gateway failover is enabled). Default is selected. Beacons Text / Text IP address / IP address Pingable IP addresses that are within fve (5) hops of the gateway. Shar|ng EnabIe Checkbox Enabled/Disabled A toggle for whether to share traffc load with this gateway (if gateway sharing is enabled). Default is selected. 2.5..3 0$PF The OSPF (Open Shortest Path First Protocolj sub-section displays the name, type and description of all defned OSPF protocols. The administrator is able to edit, delete and create new OSPFs from this sub-section. Tab|e 2.5.6.3a: Congure > Network > Rout|ng > OSPF F|e|d Name F|e|d Type Va|ue Range Descr|pt|on EnabIe Checkbox Enabled/Disabled A toggle for whether or not OSPF should be used. Default is unselected. Router ID Text Up to 31 characters Uniquely identifed for the frewall/router. Must be in the form of 0.0.0.0 (Example: 0.0.0.1) Advertise DefauIt Route Checkbox Enabled/Disabled A toggle for whether or not the frewall will advertise itself as the default route. Advanced Automatic PoIicies Checkbox Enabled/Disabled Enables the frewall to generate a set of automatic policies to allow a confgured OSPF interface to function properly. The policy created is for IP Protocol 89 and is viewable in the Monitor>Activity>Security PoIicies>Automatic section. Default is selected. DefauIt Metric Text Up to 8 characters The value used by a routing algorithm by which one route is determined to perform better than another. When metrics do not convert, the default metric will provide a substitute, enabling redistribution to proceed. Distance Text Up to 3 characters A selection used to determine which routes a router should trust if the router receives two routes with identical information. Red|str|bute (Categor|es for Connected, OSPF, RIP, and Stat|c| EnabIe Checkbox Enabled/Disabled A toggle for whether redistribution should be used or not. Metric Checkbox, Text Enabled/Disabled, Up to 2 characters Confgure the metric when the route is redistributed. To edit an existing OSPF interface, select the icon. To create a new OSPF interface, select the lcon. Tab|e 2.5.6.3b: Congure > Network > Rout|ng > OSPF > Ed|t OSPF Interface F|e|d Name F|e|d Type Va|ue Range Descr|pt|on DisabIe Checkbox Enabled/Disabled Disables OSPF for the specifed area. Default is unselected. 224 GB-OS 6.0 User's Guide Reference B: System Parameters Tab|e 2.5.6.3b: Congure > Network > Rout|ng > OSPF > Ed|t OSPF Interface Area Text Up to 19 characters This selection specifes the OSPF area. Description Text Up to 79 characters A short description to identify the OSPF area. Type Pulldown Normal, NSSA, NSSA-No Summary, Stub, Stub-No Summary This selection is used to determine the behavior of the frewall/router. Networks Pulldown ???, <USER DEFINED>, all defned networks, *EDIT*; A selection for the network(s) which will use OSPF. Advanced Link Cost Text Up to 5 characters The cost to send a packet via an interface. Priority Text Up to 3 characters A selection for the priority status of the route. Dead IntervaI Text Up to 5 characters Defne the period of time (in seconds) after which the route will be considered down. HeIIo IntervaI Text Up to 5 characters Defne the period of time (in seconds) in which updates will be sent. Retransmit IntervaI Text Up to 5 characters Defne the period of time (in seconds) in which the router will wait after an update is sent. If time expires, the router will resend the update. Transmit DeIay Text Up to 5 characters Defne the estimated time (in seconds) to send an update. This value must be greater than zero. Authent|cat|on KeyID Text Up to 3 characters KEYID identifes secret key used to create the message digest. This ID is part of the protocol and must be consistent across routers on a link. Valid numbers 1-255. Password Text Up to 16 characters The password that must be used to collect routing information through OSPF. V|rtua| L|nks Router ID Text Up to 31 characters Uniquely identifed for the frewall/router. Must be in the form of 0.0.0.0 (Example: 0.0.0.1) 2.5..4 P|P The RIP (Routing lnformation Protocolj sub-section displays the name, type and description of all defned routing information protocols. The administrator is able to edit, delete and create new RlPs from this sub-section. Tab|e 2.5.6.4a: Congure > Network > Rout|ng > RIP F|e|d Name F|e|d Type Va|ue Range Descr|pt|on EnabIe Checkbox Enabled/Disabled A toggle for whether or not RIP should be used. Default is unselected. Advertise DefauIt Route Checkbox Enabled/Disabled A toggle for whether or not the default route (gateway) on any protected network or PSN should be advertised or not. Default is unselected. Advanced Automatic PoIicies Checkbox Enabled/Disabled A toggle to enable the frewall to generate an automatic set of policies to allow confgured RIP interface settings to function properly. Default is selected. 225 GB-OS 6.0 User's Guide Reference B: System Parameters Tab|e 2.5.6.4a: Congure > Network > Rout|ng > RIP DefauIt Metric Field Up to 2 characters The value used by a routing algorithm by which one route is determined to perform better than another. RIP T|mers Update Text Up to 5 characters The rate at which RIP sends a message containing the complete routing table to all neighboring RIP routers. Timer limit is 30 seconds. Timeout Text Up to 5 characters Upon expiration of the timeout, the route is no longer valid. The route is retained in the routing table for a short time so neighbors can be notifed that the route has been dropped. Timer limit is 180 seconds. Garbage Text Up to 5 characters Upon expiration of the garbage timer, the route is completely removed from the routing table. Timer limit is 120 seconds. Red|str|bute (Categor|es for Connected, OSPF, RIP, and Stat|c| EnabIe Checkbox Enabled/Disabled A toggle for whether redistribution should be used or not Metric Checkbox, Text Enabled/Disabled, Up to 2 characters A toggle for whether a metric should be used and to what degree. To edit an existing RlP interface, select the icon. To create a new RlP interface, select the lcon. Tab|e 2.5.6.4b: Congure > Network > Rout|ng > RIP > Ed|t RIP Interface F|e|d Name F|e|d Type Va|ue Range Descr|pt|on DisabIe Checkbox Enabled/Disabled A toggle for whether the RIP Interface should be disabled or not. Default is unselected. Interface n/a n/a The interface being used. Description Test Up to 79 characters A description of the RIP interface. Input Pulldown <None>, <Both>, <v1>, <v2> A selection to determine what version of RIP will be accepted by other routers. Output Pulldown <None>, <Both>, <v1>, <v2> A selection to determine what version of RIP will be exported or broadcast. Password Pulldown <None>, <Clear>, <MD5> A selection for the type of encryption that will be used for the password. Password Text Up to 19 characters The password that must be used to collect routing information through RIP version 2. Key ID Text Up to 5 characters Pre-shared secret key ID. This only applies to RIPv2 when MD5 encryption is used. 2.5..5 $tat|c Poutes The Static Routes sub-section displays the name, type and description of all defned static routes. The administrator is able to edit, delete and create new static routes from this sub-section. Tab|e 2.5.6.5a: Congure > Network > Rout|ng > Stat|c Routes F|e|d Name F|e|d Type Va|ue Range Descr|pt|on Defau|t Gateway IPv4 Text IP Address IPv4 IP address. IPv6 Text IP Address IPv6 IP address.