Configure a Logical Router
Table of Contents
Configure a Logical Router
Configure a logical router to enable routing for an Advanced
Routing Engine.
In order to perform network routing, the Advanced
Routing Engine requires you to configure at least one logical router;
there is no default logical router. A logical router maintains a
separate routing information base and keeps routes from exposure
to other logical routers. The number of logical routers supported for
an Advanced Routing Engine varies based on firewall model.
Before
you can configure a logical router, you must Enable Advanced Routing.
- Select andAdda logical router byNameusing a maximum of 31 characters. The name must start with an alphanumeric character, underscore (_), or hyphen (-), and can contain a combination of alphanumeric characters, underscore (_) or hyphen(-). No dot (.) or space is allowed.
- Add interfaces to the logical router.
- While still on the Logical RouterGeneraltab, select theInterfacetab.
- Addan interface to the logical router by selecting from the list of interfaces. An interface can belong to only one logical router. Repeat to add more interfaces, as in the following example for the logical router named LR-1:
- (Optional) SelectAdministrative Distancesto change the global administrative distance (from the default setting) for various types of routes.
- Static—Range is 1 to 255; default is 10.
- Static IPv6—Range is 1 to 255; default is 10.
- OSPF Intra Area—Range is 1 to 255; default is 110.
- OSPF Inter Area—Range is 1 to 255; default is 110.
- OSPF External—Range is 1 to 255; default is 110.
- OSPFv3 Intra Area—Range is 1 to 255; default is 110.
- OSPFv3 Inter Area—Range is 1 to 255; default is 110.
- OSPFv3 External—Range is 1 to 255; default is 110.
- BGP AS Internal—Range is 1 to 255; default is 200.
- BGP AS External—Range is 1 to 255; default is 20.
- BGP Local Route—Range is 1 to 255; default is 20.
- RIP—Range is 1 to 255; default is 120.
- ClickOK.
- (On a firewall supporting multiple virtual systems) Assign the logical routers to a virtual system.
- Select and select a virtual system andGeneral.
- Addone or moreLogical Routers.
- ClickOK.
- ClickOK.
- (Optional) Configure ECMP for a logical router by navigating to , selecting a logical router, and then . Configure ECMP for a logical router much as you would for a virtual router on a legacy routing engine.
- Committhe changes.
- For a firewall with a pre-existing configuration, select andReboot Device. Then log back into the firewall.
- (Optional) View Runtime Stats for a logical router.
- Select and for a specific logical router, selectMore Runtime Statson the far right.
- To see the route tables for all protocols, on theRoutingtab, selectRoute TableandDisplay Address Family:IPv4 and IPv6,IPv4 Only, orIPv6 Only.
- To see entries in the Forwarding Information Base (FIB), selectForwarding Table.
- SelectStatic Route Monitoringto see the static routes you are monitoring.
- Select theBGPtab and thenSummaryto see BGP settings.
- SelectPeerto see BGP peer settings.
- SelectPeer Groupto see BGP peer group settings.
- SelectRouteandDisplay Address Family:IPv4 and IPv6,IPv4 Only, orIPv6 Onlyto see the attributes of BGP routes.
- Access the CLI to view advanced routing information. The PAN-OS CLI Quick Start lists the commands in the CLI Cheat Sheet: Networking.