D-Link DFL-1660 User Manual page 210
Network security firewall
Hide thumbs
Also See for DFL-1660:
- User manual (483 pages) ,
- Installation manual (45 pages) ,
- Reference manual (948 pages)
Table of Contents
Advertisement
4.5.3. OSPF Components
The import filter is used to filter what can be imported in the OSPF AS from either external sources
(like the main routing table or a policy based routing table) or inside the OSPF area.
External
Interarea
4.5.3.3. OSPF Interface
This section describes how to configure an OSPF Interface object. OSPF interface objects are
children of OSPF areas. Unlike areas, they are not similar on each NetDefend Firewall in the OSPF
network. The purpose of an OSPF interface object is to describe a specific interface which will be
part of an OSPF network.
General Parameters
Interface
Network
Interface Type
Specifies the network addresses allowed to be imported into this OSPF area from
external routing sources.
Specifies the network addresses allowed to be imported from other routers inside the
OSPF area.
Note: Different interface types can be used with OSPF interfaces
Note that an OSPF Interface does not always correspond to a physical interface
although this is the most common usage. Other types of interfaces, such as a VLAN,
could instead be associated with an OSPF Interface.
Specifies which interface on the firewall will be used for this OSPF
interface.
Specifies the IPv4 network address for this OSPF interface. If is not
specified it defaults to the network assigned to the underlying NetDefendOS
interface.
This network is automatically exported to the OSPF AS and does not require
a Dynamic Routing Rule.
This can be one of the following:
•
Auto - Tries to automatically detect interface type. This can be used for
physical interfaces.
•
Broadcast - The Broadcast interface type is an interface that has native
Layer 2 broadcast/multicast capabilities. The typical example of a
broadcast/multicast network is an ordinary physical Ethernet interface.
When broadcast is used, OSPF will send OSPF Hello packets to the IP
multicast address 224.0.0.5. Those packets will be heard by all other the
OSPF routers on the network. For this reason, no configuration of OSPF
Neighbor objects is required for the discovery of neighboring routers.
•
Point-to-Point - Point-to-Point is used for direct links which involve
only two routers (in other words, two firewalls). A typical example of
this is a VPN tunnel which is used to transfer OSPF traffic between two
firewalls. The neighbor address of such a link is configured by defining
an OSPF Neighbour object.
Using VPN tunnels is discussed further in Section 4.5.5, "Setting Up
OSPF".
•
Point-to-Multipoint - The Point-to-Multipoint interface type is a
collection of Point-to-Point networks, where there is more then one
router in a link that does not have OSI Layer 2 broadcast/multicast
capabilities.
210
Chapter 4. Routing
- Quick Links:
- The Cli
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
