firewall(config-if)# member-interface 2nd_physical_interface
Use the show interface redundantnumber detail command to view the redundant interface settings and also
to determine which interface is currently active. By default, the first member interface in the configuration is
active. However, this can be changed by using the redundant-interface redundantnumber active-member
physical_interface command.
IP Routing
IP Routing is one of the basic initialization steps used when configuring the Security Appliance. Routing is the
process of deciding the path for each packet that a Security Appliance handles. The routing table contains a list
of IP network addresses for which the Security Appliance is intended to provide IP routing services. After the
address translation and other routines are completed, a route identifies the interface and the gateway used to
forward packets for a specific destination network. Using the destination IP address in the packet header, the
routing mechanism decides whether the packet is to be forwarded if a valid route entry is found in the routing
table; if not, the packet is discarded.
Note
The routing mechanism should not be used to implement security policy; it should be used merely as a
supporting structure designed to forward packets efficiently and reliably.
Pages:
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276