Table of Contents
Advertisement
Unnumbered VTI - When the VTI is unnumbered, it is not necessary to configure local and
•
remote IP addresses. You define a local interface to use as the source IP address for outbound
traffic.
•
Internet connection - Select from the list.
•
Local bridge interface - Select the local interface from the list.
To create/edit a bridge:
Configure the fields in the tabs:
Configuration tab
•
In Bridge Configuration, select the networks you want to be part of the bridge.
Enable Spanning Tree Protocol - When Spanning Tree Protocol (STP - IEEE 802.1d) is enabled,
•
each bridge communicates with its neighboring bridges or switches to discover how they are
interconnected. This information is then used to eliminate loops, while providing optimal
routing of packets. STP also uses this information to provide fault tolerance, by re-computing
the topology in the event that a bridge or a network link fails.
•
Enter a Name for the bridge interface. Note that you can only enter "brN" where N is a number
between 0 and 9. For example, br2.
•
Choose the IP address and Subnet mask the switch uses.
•
Use Hotspot - Select this checkbox to redirect users to the Hotspot portal before allowing
access from this interface. Hotspot configuration is defined in the Device > Hotspot page.
•
DHCP Server
Select one of the options:
•
Enabled - Enter the IP address range and if necessary the IP address exclude range. The
appliance's own IP address is automatically excluded from this range. You can also exclude
or reserve specific IP addresses by defining network objects in the Users & Objects >
Network Objects page. Reserving specific IP addresses requires the MAC address of the
device.
Relay - Enter the DHCP server IP address.
•
•
Disabled
Advanced tab
•
MTU size - Configure the Maximum Transmission Unit size for an interface.
Disable auto negotiation - Select this option to manually configure the link speed of the
•
interface.
•
Override default MAC address – This option is for local networks except those on VLANs and
wireless networks. Use this option to override the default MAC address used by the network's
interface, when the device has two separate local networks connected to the same external
switch.
Best Practice - This is a rare configuration. Do not select this option unless you are sure you
need it.
Note – This option is not supported in 1100 appliances
Exclude from DNS proxy – Select this checkbox for any network that you do not want exposed
•
to internal domains. In guest VAPs (wireless network for guests), this is selected by default.
Check Point 1100/1200R/1400 Appliances Centrally Managed Administration Guide R77.20.70
Appliance Configuration
|
68
Advertisement
Table of Contents
Need help?
Do you have a question about the CHECK POINT 1100 and is the answer not in the manual?