SonicWALL Internet Security Appliances RIPv2 Authentication , DMZ Route Advertisement , DMZ Addresses

Page 156 SonicWALL Internet Security Appliance Administrator’s Guide

Change Damp Time (seconds) field . T he de fault v alue is 3 0 s econds . A l ower v alue corre sponds

with a higher volume of broadcast traffic over the network.

•Deleted Route Advertisements - enter the number of advertisements that a deleted route

broadcasts until it stops in the Delet ed Route Advertise ments field. The default value i s 5.

•Route Metric (1-15) - Enter a value from 1 to 15 in the Route Metric field. This is the number of

times a packet touches a router from the source IP address to the destination IP address.

•RIPv2 Route Tag (4 He x Digits) - If RIPv2 is selecte d from the Route Advertisements menu, you

can enter a value for the Route Tag. This value is implementation-dependent and provides a

mechanism for routers to classif y the origi nators of RIPv2 ad vertisemen ts. Thi s fiel d is opti onal.

RIPv2 Authentication

You can enable RIPv2 Authentication by selecting the type of authentication from the menu:

•User defined - Enter 4 h ex dig its in t he Authentication Type (4 hex digits) field. Enter 32 hex

digits in the Authentication Data (32 Hex Digits) field.

•Cleartext Password - Enter a password in the Authentication Password (Max 16 Chars) field. A

maximum of 16 characters can be used to define a password.

•MD5 Digest - Enter a numerical value from 0- 255 in the Aut henticatio n Key-Id (0-2 55) field. En-

ter a 32 hex digit value for the Authentication Key (32 hex digits) field, or use the gener ated key.

DMZ Route Advertisement

All of the information and configuration instructions for LAN Route Advertisement apply to DMZ

Route Advertisement configurat ion.

DMZ Addresses

Note: For the SonicWALL PRO 100, PRO 200 , PRO 300, PR O 23 0, PRO 330 , an d G X ser ies only

The SonicWALL provides security by pre ventin g Intern et users fro m accessin g machin es on the LAN.

This security, however, als o prevents u sers from r eaching pu blic servers, such as W eb or e-m ail

servers.

The SonicWALL offers a special DMZ ("Demilitarized Zone") port that provides Internet access to

network servers. The DMZ sits between the local network and the Internet. Server s on th e DMZ are

publicly accessible, but they are p ro tec ted fr om a ttac ks su ch as SY N Floo d an d P ing of Death. Use

of the DMZ port is optional.

Tip If you are configuring the SonicWALL SOHO3 or the SonicWAL L TELE 3, please go to Chapter 8,

Network Access Rules, for informat ion about setting up publicly accessible servers.

Using the DMZ is a strongly recommend ed alter nativ e to placin g serv ers on the WAN p ort where they

are not protected or established Public LAN servers.