Redistribution of
routes from other routing processes into the RIP is supported in Firewall OS Version 7.2 and later. Prior to this,
RIP and OSPF were not supported on the same device.
Configuring RIP
Unlike IOS, RIP is enabled differently on the Security Appliance. To enable RIP on the Security Appliance for an
interface, use the rip command from the global configuration mode. There is no router rip command on the
Security Appliance. Both RIP modes (passive and default) can be enabled on an interface by using the rip
command.
Example 6-13 shows how to configure passive RIP with simple password authentication and MD5 authentication
on inside and outside interfaces. Example 6-13 also shows how to propagate a default route on the inside
interface, indicating that the Security Appliance will be the default gateway for the downstream devices. A
default route is seldom (in most cases never) advertised out on the outside interface, because in typical network
designs, the Security Appliance is not the default gateway for the upstream device.
Example 6-13. Configuring RIP
! Enabling RIPv2 with Simple Password Authentication
hostname(config)# rip outside passive version 2 authentication text cisco 1
hostname(config)# rip inside passive version 2 authentication text cisco 1
hostname(config)# rip inside default version 2 authentication text cisco 1
! Enabling RIPv2 with MD5 Authentication
hostname(config)# rip outside passive version 2 authentication md5 cisco 1
hostname(config)# rip inside passive version 2 authentication md5 cisco 1
hostname(config)# rip inside default version 2 authentication md5 cisco 1
Enhanced Interior Gateway Routing Protocol (EIGRP)
The Security Appliance OS Software Version 8.
Pages:
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291