Cisco Systems OL-5650-02 manual Configuring RIP to Advertise Firewall Routes

Chapter 5 Configuring Firewall Load Balancing

Configuring FWLB

To stop advertising firewall routes, enter:

(config)# no ospf redistribute firewall

Configuring RIP to Advertise Firewall Routes

To advertise firewall routes from other protocols through RIP, use the rip redistribute firewall command. You may also include an optional metric that the CSS uses when advertising this route. Enter a number from 1 to 15. The default is 1.

For example, to advertise a firewall route through RIP, enter:

(config)# rip redistribute firewall 3

Note By default, RIP advertises RIP routes and local routes for interfaces running RIP. This command also advertises other routes.

To stop advertising firewall routes, enter:

(config)# no rip redistribute firewall

Example of FWLB Static Route Configuration

This section describes how to configure FWLB for two firewalls between two CSSs. To configure a static route for FWLB, you must define the following parameters for each path through the firewalls on both the local (client) and a remote (server) CSSs:

•Firewall index (identifies the physical firewall), local firewall IP address, remote firewall IP address, and CSS VLAN IP address. You must configure the ip firewall command before you configure the static route or the CSS will report an error.

•Static route each CSS will use for each firewall.