Getting started with dynamic routing

You can configure dynamic routing in the Management Client or on the command line of the NGFW Engine.

Note: We recommend that you configure dynamic routing only if you have experience and knowledge of the general principles of dynamic routing and Quagga syntax. Poorly configured dynamic routing can lead to adverse effects on networks, such as packets being directed to the wrong interfaces or data being exposed to undesired networks.

The two methods for configuring dynamic routing are separate, and using both methods on the same engine is not supported.

If you configure dynamic routing for an NGFW Engine on the command line, that dynamic routing configuration is not shown in the Management Client.
If you configure dynamic routing for an NGFW Engine in the Management Client, the configuration overwrites the dynamic routing configuration that you configured on the command line.

In the Management Client, you can configure dynamic routing using border gateway protocol (BGP), open shortest path first (OSPFv2), and protocol-independent multicast (PIM).

When using Quagga commands and syntax on the command line of the NGFW Engine, the supported dynamic routing protocols are BGP, OSPFv2, OSPFv3, PIM, and routing information protocol (RIP).

Dynamic routing is supported on Single Firewalls, Firewall Clusters, and Virtual Firewalls. The rules that allow dynamic routing traffic are created automatically.

Before installing a policy that includes a dynamic routing configuration, you can preview and save the configuration in Quagga syntax.