Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW1] GateD for OSPF on FW-1

To: "Glover, Duke" <[email protected]>
Subject: Re: [FW1] GateD for OSPF on FW-1
From: Jason Witty <[email protected]>
Date: Wed, 13 Sep 2000 13:00:51 -0500
Cc: "'[email protected].'" <[email protected]>
References: <D181F3294FE4D311A8BD009027C3980C922CD9@usflttpstch01.tmtrfl.interwan.gte.com>
Sender: [email protected]

Duke,

I've done this very successfully for 3 years now.  Here's a sanatized
sample config.  Note that costing is extremely important, as you do NOT
want to wind up in a asnycronously routed position.  So, obviously costs
need to be thought out VERY far in advance, and you might want to play
with the routerdead and hello intervals, but here's one I'm using:

--------------/etc/gated.conf------------------
#
interfaces { interface all passive; };

autonomoussystem 100;

routerid 192.168.2.5;

rip no;

ospf yes {
#   backbone {
#      authtype none;
   area 100 {
   networks {
     192.168.0.0 mask 255.255.248.0 ;
     x.x.x.0 mask 255.255.254.0 ; 
   };
   interface hme0
      cost 3 {
        retransmitinterval 5;
        transitdelay 1;
        priority 8;
        hellointerval 1;
        routerdeadinterval 2;
      };
   interface qfe0
      cost 1 {
        retransmitinterval 5;
        transitdelay 1;
        priority 1;
        hellointerval 1;
        routerdeadinterval 2;
      };
   interface qfe1
      cost 7 {
        retransmitinterval 5;
        transitdelay 1;
        priority 1;
        hellointerval 1;
        routerdeadinterval 2;
      };
   interface qfe2
      cost 3 {
        retransmitinterval 5;
        transitdelay 1;
        priority 1;
        hellointerval 1;
        routerdeadinterval 2;
      };
   };
};
--------------/etc/gated.conf------------------

Hope this helps!

Jason



"Glover, Duke" wrote:
> 
> FW-1 3.0b VPN 3083
> Solaris 2.6
> 
> Is anyone using GateD for OSPF with FW-1 ?  I'm looking for success and/or
> un-success stories.  Also, if anyone would be willing to share a "sanitized"
> GateD configuration file to look at, it will be greatly appreciated.
> 
> AtDhVaAnNkCsE,
> 
> Duke Glover
> desk => page => [email protected]
> Verizon / Enterprise Information Protection Services
> 
> ================================================================================
>      To unsubscribe from this mailing list, please see the instructions at
>                http://www.checkpoint.com/services/mailing.html
> ================================================================================


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

References:
- [FW1] GateD for OSPF on FW-1
  - From: "Glover, Duke" <[email protected]>

Prev by Date: [FW1] Static NAT question
Next by Date: Re: [FW1] Security Implications of using VNC Viewer /WinVNC
Previous by thread: [FW1] GateD for OSPF on FW-1
Next by thread: RE: [FW1] GateD for OSPF on FW-1
Index(es):
- Date
- Thread