Configuring Route Redistribution in Gaia Portal

Important - In a ClusterClosed Two or more Security Gateways that work together in a redundant configuration - High Availability, or Load Sharing., you must configure all the Cluster Members in the same way.

Route redistribution lets a router propagate routes between routing protocols - IPv4 or IPv6.

Route redistribution is also useful for advertising the default route, static routes, or aggregate routes.

Note - Static routes take precedence over dynamic routes of any kind, native or redistributed.

Procedure to Configure Route Redistribution

  1. From the left navigation tree, click Advanced RoutingRoute Redistribution.

  2. In the Route Redistributions section:

    • To add a redistributed route, click Add Redistribution From.

    • To edit a redistributed route, select it and click Edit.

  3. Configure the applicable settings.

    See the sections below.

  4. Click Save.

Add Redistribution From - Interface

Redistributes interface routes.

Parameter

Description

To Protocol

Configures the destination routing protocol.

Interface

Configures the interface from which to distribute the routes.

You can select all, or one of the configured interfaces.

Metric

Configures the cost of the redistributed routes in the destination routing protocol.

Add Redistribution From - Static

Redistributes static routes.

Parameter

Description

To Protocol

Configures the destination routing protocol:

  • RIP

  • OSPFv2

  • BGP AS <Peer Group AS>

  • RIPng

  • OSPFv3

Static Route

Configures the static route to be redistributed into the destination routing protocol:

  • All IPv4 Routes

  • Default

  • All IPv6 Routes

Metric

Configures the cost of the redistributed routes in the destination routing protocol.

Note - This parameter is mandatory when configuring redistribution into RIP.

Range:

  • RIP: 1-16

  • OSPFv2: 1-16777215

  • BGP AS <Peer Group AS>: 1-4294967295

  • RIPng: 2-16

  • OSPFv3: 8-16777215

Add Redistribution From - Aggregate

Redistributes aggregate routes.

Parameter

Description

To Protocol

Configures the destination routing protocol:

  • RIP

  • OSPFv2

  • BGP AS <Peer Group AS>

Aggregate Route

Configures the route to be redistributed into the destination routing protocol:

  • All IPv4 Routes

Metric

Configures the cost of the redistributed routes in the destination routing protocol.

Note - This parameter is mandatory when configuring redistribution into RIP.

Range:

  • RIP: 1-16

  • OSPFv2: 1-16777215

  • BGP AS <Peer Group AS>: 1-4294967295

Add Redistribution From - NAT Pool

Redistributes NAT Pools. See NAT Pools.

Parameter

Description

To Protocol

Configures the destination routing protocol.

NAT Pool

Selects the NAT Pool to distribute.

You can select All IPv4 Routes, All IPv6 Routes, or one of the configured NAT Pools.

Metric

Configures the cost of the redistributed routes in the destination routing protocol.

Add Redistribution From - Kernel

Redistributes OS kernel routes.

Parameter

Description

To Protocol

Configures the destination routing protocol:

  • RIP

  • OSPFv2

  • BGP AS <Peer Group AS>

  • RIPng

  • OSPFv3

Route

Configures the routes to redistribute:

  • Select All IPv4 Routes to redistribute all IPv4 routes.

    Select All IPv6 Routes to redistribute all IPv6 routes.

  • Configure the Address Range to redistribute specific routes.

  • There are different mechanisms, by which routes can be matched against the configured subnet:

    • Exact - Matches only routes with prefix and mask length exactly equal to the specified network.

    • Normal - Matches any route contained within the specified network.

    • Refines - Matches only routes that are contained within, but more specific than, the specified network. For example, with a greater mask length.

Metric

Configures the cost of the redistributed routes in the destination routing protocol.

Note - This parameter is mandatory when configuring redistribution into RIP.

Range:

  • RIP: 1-16

  • OSPFv2: 1-16777215

  • BGP AS <Peer Group AS>: 1-4294967295

  • RIPng: 2-16

  • OSPFv3: 8-16777215

Add Redistribution From - RIP

Redistributes RIP routes.

Parameter

Description

To Protocol

Configures the destination routing protocol:

  • OSPFv2

  • BGP AS <Peer Group AS>

Route

Configures the routes to redistribute:

  • Select All IPv4 Routes to redistribute all IPv4 routes.

  • Configure the Address Range to redistribute specific routes.

  • There are different mechanisms, by which routes can be matched against the configured subnet:

    • Exact - Matches only routes with prefix and mask length exactly equal to the specified network.

    • Normal - Matches any route contained within the specified network.

    • Refines - Matches only routes that are contained within, but more specific than, the specified network. For example, with a greater mask length.

Action

Configures whether to accept or reject this route.

Metric

Configures the cost of the redistributed routes in the destination routing protocol.

Range:

  • OSPFv2: 1-16777215

  • BGP AS <Peer Group AS>: 1-4294967295

Add Redistribution From - OSPFv2, or OSPFv2 External

Redistributes OSPFv2 routes.

Parameter

Description

To Protocol

Configures the destination routing protocol:

  • RIP

  • OSPFv2

  • BGP AS <Peer Group AS>

Route

Configures the routes to redistribute:

  • Select All IPv4 Routes to redistribute all IPv4 routes.

  • Configure the Address Range to redistribute specific routes.

  • There are different mechanisms, by which routes can be matched against the configured subnet:

    • Exact - Matches only routes with prefix and mask length exactly equal to the specified network.

    • Normal - Matches any route contained within the specified network.

    • Refines - Matches only routes that are contained within, but more specific than, the specified network. For example, with a greater mask length.

Action

Configures whether to accept or reject this route.

Metric

Configures the cost of the redistributed routes in the destination routing protocol.

Note - This parameter is mandatory when configuring redistribution into RIP.

Range:

  • RIP: 1-16

  • OSPFv2: 1-16777215

  • BGP AS <Peer Group AS>: 1-4294967295

RIP Tag

Optional: Configures the RIP tag assigned to exported routes.

Range: 1-65535

Add Redistribution From - BGP Based on AS-Path

Redistributes BGP routes based on the AS-Path attribute.

Parameter

Description

To Protocol

Configures the destination routing protocol:

  • RIP

  • OSPFv2

  • BGP AS <Peer Group AS>

  • RIPng

  • OSPFv3

From BGP AS-Path

Configures the AS_PATH regular expression that contains only digits and these special characters:

  • . - The period character matches any single character.

  • \ - The backslash character matches the character right after the backslash. For pattern recall, match the pattern indicated by the digit following the backslash.

  • ^ - The circumflex character matches the characters or null string at the beginning of the AS path.

  • $ - The dollar character matches the characters or null string at the end of the AS path.

  • ? - The question mark matches zero or one occurrence of the pattern before "?".

  • * - The asterisk character matches zero or more occurrences of the pattern before "*".

  • + - The plus character matches one or more occurrences of the pattern before "+".

  • | - The pipeline (vertical line) character matches one of the patterns on either side of the "|" character.

  • _ - The underscore character matches comma (,), left brace ({), right brace (}), beginning of ASPath (^), end of ASPath ($), or a whitespace (space or tabulation).

  • [ ] - The square brackets match the set of characters or range of characters separated by a hyphen (-) within the brackets.

  • ( ) - The round brackets group one or more patterns into a single pattern.

  • {m n} - Matches at least "m" and at most "n" repetitions of the pattern before "{m,n}". Both "m" and "n" are positive integers, and "m" is less than or equal to "n".

  • {m} - Matches exactly "m" repetitions of the pattern before "{m}". The "m" is a positive integer.

  • {m,} - Matches "m" or more repetitions of the pattern before "{m}". The "m" is a positive integer.

Configures the route origin:

  • Any - A route was learned from any protocol and the path is probably complete.

  • IGP - A route was learned from an interior routing protocol and the path is probably complete.

  • EGP - A route was learned from an exterior routing protocol that does not support AS-PATH, and the path is probably incomplete.

  • Incomplete - The route path information is incomplete.

Route

Configures the routes to redistribute:

  • Select All IPv4 Routes to redistribute all IPv4 routes.

    Select All IPv6 Routes to redistribute all IPv6 routes.

  • Configure the Address Range to redistribute specific routes.

  • There are different mechanisms, by which routes can be matched against the configured subnet:

    • Exact - Matches only routes with prefix and mask length exactly equal to the specified network.

    • Normal - Matches any route contained within the specified network.

    • Refines - Matches only routes that are contained within, but more specific than, the specified network. For example, with a greater mask length.

Action

Configures whether to accept or reject this route.

Metric

Configures the cost of the redistributed routes in the destination routing protocol.

Note - This parameter is mandatory when configuring redistribution into RIP.

Range:

  • RIP: 1-16

  • OSPFv2: 1-16777215

  • BGP AS <Peer Group AS>: 1-4294967295

  • RIPng: 2-16

  • OSPFv3: 8-16777215

RIP Tag

Optional: Configures the RIP tag assigned to exported routes.

Range: 1-65535

Automatic Tag

Optional: Automatically generates the external OSPF route tag based on the BGP AS.

If enabled, the tag is attached to external OSPF routes upon export.

Manual Tag

Optional: Configures the external OSPF route tag assigned to exported routes.

Note - The Manual Tag value takes precedence over the Automatic Tag value when both are configured.

Range: 1-2147483647

Add Redistribution From - BGP Based on AS

Redistributes BGP routes based on the AS Number.

Parameter

Description

To Protocol

Configures the destination routing protocol:

  • RIP

  • OSPFv2

  • BGP AS <Peer Group AS>

  • RIPng

  • OSPFv3

From BGP AS

Configures the AS Number:

  • BGP AS <Peer Group AS>

Route

Configures the routes to redistribute:

  • Select All IPv4 Routes to redistribute all IPv4 routes.

    Select All IPv6 Routes to redistribute all IPv6 routes.

  • Configure the Address Range to redistribute specific routes.

  • There are different mechanisms, by which routes can be matched against the configured subnet:

    • Exact - Matches only routes with prefix and mask length exactly equal to the specified network.

    • Normal - Matches any route contained within the specified network.

    • Refines - Matches only routes that are contained within, but more specific than, the specified network. For example, with a greater mask length.

Action

Configures whether to accept or reject this route.

Metric

Configures the cost of the redistributed routes in the destination routing protocol.

Note - This parameter is mandatory when configuring redistribution into RIP.

Range:

  • RIP: 1-16

  • OSPFv2: 1-16777215

  • BGP AS <Peer Group AS>: 1-4294967295

  • RIPng: 2-16

  • OSPFv3: 8-16777215

RIP Tag

Optional: Configures the RIP tag assigned to exported routes.

Range: 1-65535

Automatic Tag

Optional: Automatically generates the external OSPF route tag based on the BGP AS.

If enabled, the tag is attached to external OSPF routes upon export.

Manual Tag

Optional: Configures the external OSPF route tag assigned to exported routes.

Note - The Manual Tag value takes precedence over the Automatic Tag value when both are configured.

Range: 1-2147483647

Add Redistribution From - BGP Default Origin

Redistributes all IPv4 routes into BGP.

Parameter

Description

To Protocol

Configures the destination routing protocol:

  • BGP AS <Peer Group AS>

Metric

Configures the cost of the redistributed routes in the destination routing protocol.

Range: 1-4294967295

Add Redistribution From - RIPng

Redistributes IPv6 RIPng routes.

Parameter

Description

To Protocol

Configures the destination routing protocol:

  • BGP AS <Peer Group AS>

  • OSPFv3

Route

Configures the routes to redistribute:

  • Select All IPv6 Routes to redistribute all IPv6 routes.

  • Configure the Address Range to redistribute specific routes.

  • There are different mechanisms, by which routes can be matched against the configured subnet:

    • Exact - Matches only routes with prefix and mask length exactly equal to the specified network.

    • Normal - Matches any route contained within the specified network.

    • Refines - Matches only routes that are contained within, but more specific than, the specified network. For example, with a greater mask length.

Action

Configures whether to accept or reject this route.

Metric

Configures the cost of the redistributed routes in the destination routing protocol.

Range:

  • BGP AS <Peer Group AS>: 1-4294967295

  • OSPFv3: 1-16777215

Add Redistribution From - OSPFv3, or OSPFv3 External

Redistributes IPv6 OSPFv3 routes.

Parameter

Description

To Protocol

Configures the destination routing protocol:

  • BGP AS <Peer Group AS>

  • RIPng

  • OSPFv3

Route

Configures the routes to redistribute:

  • Select All IPv6 Routes to redistribute all IPv6 routes.

  • Configure the Address Range to redistribute specific routes.

  • There are different mechanisms, by which routes can be matched against the configured subnet:

    • Exact - Matches only routes with prefix and mask length exactly equal to the specified network.

    • Normal - Matches any route contained within the specified network.

    • Refines - Matches only routes that are contained within, but more specific than, the specified network. For example, with a greater mask length.

Action

Configures whether to accept or reject this route.

Metric

Configures the cost of the redistributed routes in the destination routing protocol.

Range:

  • BGP AS <Peer Group AS>: 1-4294967295

  • OSPFv3: 1-16777215

Procedure to Configure BGP Redistribution Settings

  1. From the left navigation tree, click Advanced Routing > Route Redistribution.

  2. In the BGP Redistribution Settings section, select a BGP Group and click Edit.

  3. Configure the applicable settings:

    • MED (Multi-Exit Discriminator) - The cost of using this route (0 - 4294967295)

    • Local Preference - Local BGP route preference value when routes are redistributed into BGP (0 - 4294967295). The greater the local preference, the more preferred is the route.

    • In the Match AS Numbers to Communities section, click Add.

      Applies this redistribution ruleClosed Set of traffic parameters and other conditions in a Rule Base (Security Policy) that cause specified actions to be taken for a communication session. only to BGP routes, whose BGP Community attribute contains a specified Community.

      Configure the applicable Community and AS Number.

      Click OK.

    • In the Append AS Numbers to Communities section, click Add.

      Appends a BGP Community to routes exported through this rule.

      Configure the applicable Community and AS Number.

      Click OK.

  4. Click Save.