Routing PDF

221
GB-OS 6.0 User's Guide

Reference B: System Parameters
2.5. Pout|ng
The Routing sub-section allows the administrator to confgure the Gateway Policies, RlP and Static
Routes aspects of the Routing facility.
2.5..1 0P
The BGP (Border Gateway Protocolj sub-section displays the name, type and description of all BGP
protocols. The administrator is able to edit, delete and create new BGPs from this sub-section.
Tab|e 2.5.6.1a: Congure > Network > Rout|ng > BGP
F|e|d Name F|e|d Type Va|ue Range Descr|pt|on
EnabIe Checkbox Enabled/Disabled Enables the BGP interface and starts the service.
Default is unselected.
Router AS Text Up to 5 characters The number assigned to a router or set of routers in
a single technical administration.
Router ID Text Up to 31 characters Router ID number.
Networks Pulldown,
Text
???, <USER
DEFINED>, all
defned networks,
*EDIT*;
A selection for the network(s) which will use BGP.
Advanced
Automatic PoIicies Checkbox Enabled/Disabled Enables the frewall to generate a set of automatic
policies to allow a confgured BGP interface to
function properly. The policy created is for TCP port
179 and is viewable in the Monitor> Activity>Security
PoIicies>Automatic section. Default is selected.
Red|str|bute (Categor|es for Connected, OSPF, RIP, and Stat|c|
EnabIe Checkbox Enabled/Disabled A toggle for whether redistribution should be used or
not.
Metric Checkbox,
Text
Enabled/Disabled,
Up to 2 characters
Confgure the metric when the route is redistributed.
Route Aggregat|on
Aggregate
Addresses
Pulldown ???, <USER
DEFINED>, all
defned networks,
*EDIT*
The network(s) to aggregate.
AS Set Checkbox Enabled/Disabled This selection will generate or send the AS set
of other routers to the remote router. Default is
unselected.
Summary OnIy Checkbox Enabled/Disabled This selection flters the more specifc routes when
sending updates. Default is unselected.
To edit an existing BGP interface, select the icon. To create a new BGP interface, select the
lcon.
Tab|e 2.5.6.1b: Congure > Network > Rout|ng > BGP > Ed|t BGP Interface
DisabIe Checkbox Enabled/Disabled Disables the BGP interface. Default is unselected.
Description Text Up to70 characters A short description to identify the BGP interface.
Neighbor Text Up to 31 characters A selection for the IP address used to confgure the
peer routers the frewall will use to connect to BGP.
Remote AS Text Up to 5 characters The AS number of the peer router.
Advertise DefauIt
Route
Checkbox Enabled/Disabled Enable if the frewall will advertise itself as the default
route. Default is unselected.
222
Tab|e 2.5.6.1b: Congure > Network > Rout|ng > BGP > Ed|t BGP Interface
Advanced
Next Hop SeIf Checkbox Enabled/Disabled This selection disables the NEXT HOP SELF attribute
for BGP. Default is unselected.
2.5..2 0ateWay Po||c|es
The Gateway Policies sub-section displays the name, type and description of all defned gateway policies.
The administrator is able to enable or disable various options in this sub-section.
Tab|e 2.5.6.2a: Congure > Network > Rout|ng > Gateway Po||c|es
Gateway Fa||over
EnabIe Checkbox Enabled/Disabled A toggle for whether gateway failover capabilities
should be used or not. Default is unselected.
Advanced
Add Static Routes
For Beacons
Checkbox Enabled/Disabled A toggle for whether static routes should be added for
defned beacons. Default is selected.
Ping Secondary
OnIy if Primary
Down
Checkbox Enabled/Disabled A toggle for whether the failover gateway should
be pinged only if pinging the primary gateway is
unsuccessful. Default is unselected.
Gateway Shar|ng
EnabIe Checkbox Enabled/Disabled A toggle for whether traffc connection sharing
between the selected gateways should be enabled or
not. Default is unselected.
Po||cy Based Rout|ng
EnabIe Checkbox Enabled/Disabled A toggle for whether the ability to select a gateway for
connections with outbound policies should be enabled
or not. Default is unselected.
Source Rout|ng
EnabIe Checkbox Enabled/Disabled A toggle for whether the ability to select a return
gateway for connections with inbound policies or not.
The Edit Gateway Policy screen can be accessed by selecting along the top right of the Gateway Policies
screen.
Tab|e 2.5.6.2b: Congure > Network > Rout|ng > Ed|t Gateway Po||c|es
DisabIe Checkbox Enabled/Disabled A toggle for whether gateway policy should be used or
not. Default is unselected.
Name Text Up to 19 characters A unique identifer for the gateway policy, used for
reference elsewhere in the confguration.
Description Text Up to 79 characters A description used to further identify the gateway
policy.
Route Pulldown ???, <USER
DEFINED>, all
defned dynamic,
external interfaces
A selection for the route to be used by the gateway
policy.
IP Address Text Up to 15 characters The IP address of the gateway policy`s route if
<USER DEFINED> is selected in ROUTE.
223
Tab|e 2.5.6.2b: Congure > Network > Rout|ng > Ed|t Gateway Po||c|es
Fa||over
EnabIe Checkbox Enabled/Disabled A toggle for whether gateway failover should be
enabled for the gateway policy (if gateway failover is
enabled). Default is selected.
Beacons Text / Text IP address /
IP address
Pingable IP addresses that are within fve (5) hops of
the gateway.
Shar|ng
EnabIe Checkbox Enabled/Disabled A toggle for whether to share traffc load with this
gateway (if gateway sharing is enabled). Default is
selected.
2.5..3 0$PF
The OSPF (Open Shortest Path First Protocolj sub-section displays the name, type and description of
all defned OSPF protocols. The administrator is able to edit, delete and create new OSPFs from this
sub-section.
Tab|e 2.5.6.3a: Congure > Network > Rout|ng > OSPF
EnabIe Checkbox Enabled/Disabled A toggle for whether or not OSPF should be used.
Router ID Text Up to 31 characters Uniquely identifed for the frewall/router. Must be in
the form of 0.0.0.0 (Example: 0.0.0.1)
Advertise DefauIt
Route
Checkbox Enabled/Disabled A toggle for whether or not the frewall will advertise
itself as the default route.
Advanced
Automatic PoIicies Checkbox Enabled/Disabled Enables the frewall to generate a set of automatic
policies to allow a confgured OSPF interface
to function properly. The policy created is for
IP Protocol 89 and is viewable in the
Monitor>Activity>Security PoIicies>Automatic section.
Default is selected.
DefauIt Metric Text Up to 8 characters The value used by a routing algorithm by which one
route is determined to perform better than another.
When metrics do not convert, the default metric
will provide a substitute, enabling redistribution to
proceed.
Distance Text Up to 3 characters A selection used to determine which routes a router
should trust if the router receives two routes with
identical information.
not.
Metric Checkbox,
Text
Enabled/Disabled,
Up to 2 characters
Confgure the metric when the route is redistributed.
To edit an existing OSPF interface, select the icon. To create a new OSPF interface, select the
lcon.
Tab|e 2.5.6.3b: Congure > Network > Rout|ng > OSPF > Ed|t OSPF Interface
DisabIe Checkbox Enabled/Disabled Disables OSPF for the specifed area. Default is
unselected.
224
Tab|e 2.5.6.3b: Congure > Network > Rout|ng > OSPF > Ed|t OSPF Interface
Area Text Up to 19 characters This selection specifes the OSPF area.
Description Text Up to 79 characters A short description to identify the OSPF area.
Type Pulldown Normal, NSSA,
NSSA-No Summary,
Stub, Stub-No
Summary
This selection is used to determine the behavior of the
frewall/router.
Networks Pulldown ???, <USER
DEFINED>, all
defned networks,
*EDIT*;
A selection for the network(s) which will use OSPF.
Advanced
Link Cost Text Up to 5 characters The cost to send a packet via an interface.
Priority Text Up to 3 characters A selection for the priority status of the route.
Dead IntervaI Text Up to 5 characters Defne the period of time (in seconds) after which the
route will be considered down.
HeIIo IntervaI Text Up to 5 characters Defne the period of time (in seconds) in which
updates will be sent.
Retransmit IntervaI Text Up to 5 characters Defne the period of time (in seconds) in which the
router will wait after an update is sent. If time expires,
the router will resend the update.
Transmit DeIay Text Up to 5 characters Defne the estimated time (in seconds) to send an
update. This value must be greater than zero.
Authent|cat|on
KeyID Text Up to 3 characters KEYID identifes secret key used to create the
message digest. This ID is part of the protocol and
must be consistent across routers on a link. Valid
numbers 1-255.
Password Text Up to 16 characters The password that must be used to collect routing
information through OSPF.
V|rtua| L|nks
Router ID Text Up to 31 characters Uniquely identifed for the frewall/router. Must be in
the form of 0.0.0.0 (Example: 0.0.0.1)
2.5..4 P|P
The RIP (Routing lnformation Protocolj sub-section displays the name, type and description of all defned
routing information protocols. The administrator is able to edit, delete and create new RlPs from this
sub-section.
Tab|e 2.5.6.4a: Congure > Network > Rout|ng > RIP
EnabIe Checkbox Enabled/Disabled A toggle for whether or not RIP should be used.
Advertise DefauIt
Route
Checkbox Enabled/Disabled A toggle for whether or not the default route (gateway)
on any protected network or PSN should be advertised
or not. Default is unselected.
Advanced
Automatic PoIicies Checkbox Enabled/Disabled A toggle to enable the frewall to generate an
automatic set of policies to allow confgured RIP
interface settings to function properly. Default is
selected.
225
Tab|e 2.5.6.4a: Congure > Network > Rout|ng > RIP
DefauIt Metric Field Up to 2 characters The value used by a routing algorithm by which one
route is determined to perform better than another.
RIP T|mers
Update Text Up to 5 characters The rate at which RIP sends a message containing the
complete routing table to all neighboring RIP routers.
Timer limit is 30 seconds.
Timeout Text Up to 5 characters Upon expiration of the timeout, the route is no longer
valid. The route is retained in the routing table for a
short time so neighbors can be notifed that the route
has been dropped. Timer limit is 180 seconds.
Garbage Text Up to 5 characters Upon expiration of the garbage timer, the route is
completely removed from the routing table. Timer limit
is 120 seconds.
not
Metric Checkbox,
Text
Enabled/Disabled,
Up to 2 characters
A toggle for whether a metric should be used and to
what degree.
To edit an existing RlP interface, select the icon. To create a new RlP interface, select the lcon.
Tab|e 2.5.6.4b: Congure > Network > Rout|ng > RIP > Ed|t RIP Interface
DisabIe Checkbox Enabled/Disabled A toggle for whether the RIP Interface should be
disabled or not. Default is unselected.
Interface n/a n/a The interface being used.
Description Test Up to 79 characters A description of the RIP interface.
Input Pulldown <None>, <Both>,
<v1>, <v2>
A selection to determine what version of RIP will be
accepted by other routers.
Output Pulldown <None>, <Both>,
<v1>, <v2>
A selection to determine what version of RIP will be
exported or broadcast.
Password Pulldown <None>, <Clear>,
<MD5>
A selection for the type of encryption that will be used
for the password.
Password Text Up to 19 characters The password that must be used to collect routing
information through RIP version 2.
Key ID Text Up to 5 characters Pre-shared secret key ID. This only applies to RIPv2
when MD5 encryption is used.
2.5..5 $tat|c Poutes
The Static Routes sub-section displays the name, type and description of all defned static routes. The
administrator is able to edit, delete and create new static routes from this sub-section.
Tab|e 2.5.6.5a: Congure > Network > Rout|ng > Stat|c Routes
Defau|t Gateway
IPv4 Text IP Address IPv4 IP address.
IPv6 Text IP Address IPv6 IP address.

Routing PDF

Загружено:

Сведения о документе

Исходное описание:

Оригинальное название

Авторское право

Доступные форматы

Поделиться этим документом

Поделиться или встроить документ

Параметры публикации

Этот документ был вам полезен?

Это неприемлемый материал?

Авторское право:

Доступные форматы

Routing PDF

Загружено:

Авторское право:

Доступные форматы

221

GB-OS 6.0 User's Guide

Вам также может понравиться