Enable OSPF for the logical router.

Enter a router ID in the format of an IPv4 address.

If you want to apply Bidirectional Forwarding Detection to OSPF, select a BFD profile or create a new one. Default is None (Disable BFD).

Select a Global Timer profile or create a new one to apply to OSPF.

Select an OSPF Interface Timer or create a new one to apply to OSPF.

Select an OSPF Redistribution profile or create a new one to redistribute IPv4 static routes, connected routes, IPv4 BGP routes, or the IPv4 default route to the OSPF link-state database.

Add an area identified by its Area ID in x.x.x.x format. This is the identifier that each neighbor must accept to be part of the same area.

Select an Authentication profile or create a new one.

Select the type of OSPF area:

(Stub and NSSA areas only) Select to prevent the area from receiving Type 3 Summary LSAs and thereby reduce traffic in the area.

(NSSA areas only) Select to cause OSPF to originate a default route.

(NSSA areas only) Enter a metric for the default route; range is 1 to 16,777,214; default is 10.

(NSSA areas only) Type 1 or Type 2

Select if the logical router is an Area Border Router, which allows the next four fields to be configured.

Select an access list or create a new one to filter network routes coming into the area based on IPv4 source address.

Select an access list or create a new one to filter network routes that originated in the area, to allow or prevent the routes from being advertised to other areas.

Select a prefix list or create a new one to filter network prefixes coming into the area.

Select a prefix list or create a new one to filter network prefixes that originated in the area, to prevent the routes from being advertised to other areas.

(NSSA areas only) If ABR is selected and area type is NSSA, Add an IPv4 prefix to summarize a group of external subnets into a single Type-7 LSA, which is then translated to a Type-5 LSA and advertised to the backbone when you select Advertise.

Add an IP Address/Netmask. A Type-3 Summary LSA (link-state advertisement) with routing information matching this range is announced into the backbone area if the area contains at least one intra-area network (that is, described with router or network LSA) from this range).

Enter a substitute IPaddress/netmask so that a Type-3 Summary LSA with this IP address/netmask is announced into the backbone if the area contains at least one intra-area network from the IP Address/netmask specified.

Select to send LSAs that match the subnet.

Add each interface to be included in the area.

Enable the interface.

Select to ignore maximum transmission unit (MTU) mismatches when trying to establish an adjacency (default is disabled; MTU match checking occurs). RFC 2328 defines the interface MTU as “The size in bytes of the largest IP datagram that can be sent out the associated interface, without fragmentation.”

Select to prevent the interface from sending or receiving OSPF packets; however, the interface is still included in the link-state database. You can make an interface passive, for example, if it connects to a switch, because you don’t want to send Hello packets where there is no router.

Select the link type:

Enter the priority for the interface; the priority for the router to be elected as a designated router (DR) or backup DR (BDR); range is 0 to 255; default is 1. If zero is configured, the router will not be elected as DR or BDR.

Select a Timer Profile or create a new one to apply to the interface. This profile overrides the Global Interface Timer profile applied to OSPF.

Select an Authentication Profile or create a new one to apply to the interface. This profile overrides the Authentication profile applied on the Type tab.

Select a BFD Profile or Inherit-vr-global-setting (default) or create a new BFD profile or select None (Disable BFD). This profile overrides the profile configured for OSPF.

Specify a cost for the interface; range is 1 to 65,535; default is 10.

Enter a name for the virtual link.

Enable the virtual link.

Select a Timer Profile or create a new one to apply to the virtual link. This profile overrides the Global Interface Timer profile applied to OSPF.

Select an Authentication Profile or create a new one to apply to the virtual link. This profile overrides the Authentication profile applied on the Type tab.

Select to enforce compatibility with RFC 1583, which allows one best route to an autonomous system boundary router (ASBR) in the OSPF routing table. Default is disabled, which means the OSPF routing table can maintain multiple intra-AS paths in the routing table, thereby preventing routing loops.

Enable Graceful Restart for the logical router; default is enabled.

Enable Graceful Restart Helper Mode for the logical router; default is enabled.

Enable Strict LSA Checking to cause the helper router to stop performing helper mode and causes the graceful restart process to stop if a link-state advertisement indicates a network topology change; default is enabled.

Specify the number of seconds within which the logical router will perform a graceful restart if the firewall goes down or becomes unavailable. Range is 5 to 1,800; default is 120.