Creating elements for dynamic routing
Before enabling dynamic routing in the Management Client, you can optionally create customized elements for dynamic routing.
If the default elements meet your needs, it is not necessary to create custom elements.
| Element | Description |
|---|---|
| BGP Profile | This element contains administrative distance, redistribution, and aggregation settings. You can use this element in multiple Firewalls, Virtual Firewalls, and Firewall Clusters. There is a default BGP Profile element that is used automatically. |
| Autonomous System | An autonomous system (AS) is a group of IP routing prefixes controlled by an administrative entity. Each AS has a unique identifying number. This element is used to define the AS number. The number determines whether internal BGP (BGP peers have the same AS number) or external BGP (BGP peers have different AS numbers) is used. |
| BGP Peering | An element that you place between a Firewall and another Firewall or an External BGP Peer element in the Routing view in the Engine Editor. It contains the parameters to define a BGP peering relationship, and implements inbound and outbound policies through access lists and the Route Map. |
| BGP Connection Profile | This element can be used to set a password for TCP MD5 authentication between BGP peers, and to set timers, such as the keepalive value. You can use this element in multiple BGP Peering elements. There is a default BGP Connection Profile element that is used automatically. |
|
External BGP Peer (Optional) |
Use this element to define the IP address and AS number of a BGP peer that is under the administrative control of a third party, such as another organization or SMC. |
| Element | Description |
|---|---|
| OSPFv2 Domain Settings | Use this element to set the area border router (ABR) type, throttle timer settings, and the max metric router link-state advertisement (LSA) settings. There is a default OSPFv2 Domain Settings element that is used automatically. |
| OSPFv2 Profile | This element contains administrative distance and redistribution settings. There is a default OSPFv2 Profile element that is used automatically. |
| OSPFv2 Interface Settings | This element contains the interface settings. You can also select the type of authentication to use. There is a default OSPFv2 Interface Settings element that is used automatically. |
| OSPFv2 Area | Use this element to set the area ID and type. You can also configure the ABR settings and virtual links. |
| OSPFv2 Key Chains | This element contains the keys that you can use if the Message Digest authentication type is used in an OSPFv2 Interface Setting element. |
| Element | Description |
|---|---|
| PIM Profile | This element contains the multicast groups and determines the PIM mode that is used. There is a default PIM Profile element that is used automatically. |
| PIM Interface Settings | This element contains various settings, such as the designated router (DR) priority and the zone boundary router (ZBR) group. You must also set the IGMP Querier Settings element to use. There is a default PIM Interface Settings element that you can use. |
| IGMP Querier Settings | This element determines the IGMP version to use. You can also set the query interval and robustness settings. You can use this element when configuring both PIM and IGMP Proxy multicast. There are three default IGMP Querier Settings elements; one element for each version of IGMP. |
| Element | Description | |
|---|---|---|
|
Route Map (Optional) |
An element that contains rules to control or manipulate received or advertised routes based on matching conditions. The rules can be edited in the same way as in policy elements. | |
|
Access Lists (Optional) |
IP Access List | A filtering element that you can use in the Matching Condition cell of a Route Map rule. You can filter by subnet. This element can also be used to implement inbound and outbound filtering policies in a BGP Peering element. |
| IP Prefix Access List | Similar to an IP Access List, but includes the prefix length or netmask as a filter. This element can be used in the Matching Condition cell of a Route Map rule and in a BGP Peering element. | |
| Community Access List | A filtering element used for the BGP community attribute. If the Type is Expanded, you can use regular expressions in the Community Regular Expression cell. This element can be used in the Matching Condition cell of a Route Map rule and in a BGP Peering element. | |
| Extended Community Access List | A filtering element that represents the extended version of the Community Access List. If the Type is Expanded, you can use regular expressions in the Community Regular Expression cell. This element can be used in the Matching Condition cell of a Route Map rule. | |
| AS Path Access List | A filtering element for the BGP AS path attribute. You can enter regular expressions for matching AS paths (a sequence of AS numbers). This element can be used in the Matching Condition cell of a Route Map rule and in a BGP Peering element. | |