RIP

Routing Information Protocol (RIP) is an interior gateway protocol (IGP) that was designed for small IP networks. RIP relies on hop count to determine routes; the best routes have the fewest number of hops. RIP is based on UDP and uses port 520 for route updates. By limiting routes to a maximum of 15 hops, the protocol helps prevent the development of routing loops, but also limits the supported network size. If more than 15 hops are required, traffic is not routed. RIP also can take longer to converge than OSPF and other routing protocols. The firewall supports RIP v2.
Perform the following procedure to configure RIP.
  1. Configure general virtual router configuration settings.
    See Virtual Routers for details.
  2. Configure general RIP configuration settings.
    1. Select the
      RIP
      tab.
    2. Select
      Enable
      to enable the RIP protocol.
    3. Select
      Reject Default Route
      if you do not want to learn any default routes through RIP. This is the recommended, default setting.
      Clear
      Reject Default Route
      if you want to permit redistribution of default routes through RIP.
  3. Configure interfaces for RIP.
    1. On the
      Interfaces
      tab, select an interface from the drop-down in the Interface configuration section.
    2. Select an already defined interface.
    3. Select
      Enable
      .
    4. Select
      Advertise
      to advertise a default route to RIP peers with the specified metric value.
    5. (
      Optional
      ) Select a profile from the
      Auth Profile
      drop-down.
    6. Select normal, passive or send-only from the
      Mode
      drop-down.
    7. Click
      OK
      .
  4. Configure RIP timers.
    1. On the
      Timers
      tab, enter a value for
      Interval Seconds (sec)
      . This setting defines the length of the following RIP timer intervals in seconds (range is 1-60; default is 1).
    2. Specify the
      Update Intervals
      to define the number of intervals between route update announcements (range is 1-3,600; default is 30).
    3. Specify the
      Delete Intervals
      to define the number of intervals between the time that the route expires to its deletion (range is 1-3,600; default is 180).
    4. Specify the
      Expire Intervals
      to define the number of intervals between the time that the route was last updated to its expiration (range is 1-3600; default is 120).
  5. (
    Optional
    ) Configure Auth Profiles.
    By default, the firewall does not use RIP authentication for the exchange between RIP neighbors. Optionally, you can configure RIP authentication between RIP neighbors by either a simple password or MD5 authentication. MD5 authentication is recommended; it is more secure than a simple password.
    Simple Password RIP authentication
    1. Select
      Auth Profiles
      and
      Add
      a name for the authentication profile to authenticate RIP messages.
    2. Select
      Simple Password
      as the
      Password Type
      .
    3. Enter a simple password and then confirm.
    MD5 RIP authentication
    1. Select
      Auth Profiles
      and
      Add
      a name for the authentication profile to authenticate RIP messages.
    2. Select
      MD5
      as the
      Password Type
      .
    3. Add
      one or more password entries, including:
      • Key-ID (range is 0-255)
      • Key
    4. (
      Optional
      ) Select
      Preferred
      status.
    5. Click
      OK
      to specify the key to be used to authenticate outgoing message.
    6. Click
      OK
      again in the Virtual Router - RIP Auth Profile dialog box.
  6. Commit
    your changes.

Related Documentation