How to configure the firewall global router ID number?

26

Configure the firewall global router ID number as follows:
When configuring the global router ID, you must ensure that the router ID is different from that on the network. The usual way is to configure the router ID to match the IP address of an interface of the router.
1. Run: system-view The system view is displayed.
2. Run: router id router-id The global router ID is configured.
By default, no global router ID is configured.
3. Run the display router id command to view the configured router ID.

Other related questions:
Configuring the global router ID on the firewall
Perform as follows to configure the global router ID on the firewall: In the configuration of a global router ID, you must ensure that it is different from all other router IDs. Generally, you can set the router ID to be same as the IP address of a router interface. 1. Run the system-view command to access the system view. 2. Run the router id router-id command to configure the global router ID. By default, the global router ID is not configured. 3. Run the display router id command to display the configured router ID.

Configuring virtual routers on the firewall
Perform as follows to configure virtual routers on the firewall: You can configure a virtual router to isolate VPN routes. 1. Choose Network > Route > Virtual Route. 2. In Virtual Router List, click Add. 3. Enter the name of the virtual router to be created. 4. Click OK. If the new virtual router entry is displayed, the operation succeeds.

Configure the ASPF firewall on an AR router
The application specific packet filter (ASPF) firewall can detect and filter FTP, HTTP, SIP, and RTSP packets on the application layer. The ASPF firewall filters packets on the application layer based on status. This firewall can detect application layer session information that attempts to pass the firewall, and prevent packets that do not match rules from passing the firewall. After the ActiveX Blocking is configured, the ASPF will block the ActiveX that is transmitted over HTTP, preventing users from installing insecure or malicious controls. After the Java Blocking is configured, the ASPF will block requests that are sent in order to obtain programs containing the Java Applet from web pages. In the system view: 1. Run the firewall interzone zone-name1 zone-name2 command to access the interzone view. 2. In V200R006 and earlier versions, run the detect aspf { all | ftp | http [ activex-blocking | java-blocking ] | rtsp | sip } command to configure the ASPF firewall. In V200R007, run the detect aspf { ftp | rtsp | sip } command to configure the ASPF firewall. Most of the application layer protocols have bidirectional interaction processes. Therefore, during ASPF configuration, ignore directions, and the router automatically checks the status of inbound and outbound packets. By default, the ASPF firewall is not configured for the interzone. 3. Check the configuration result. Run the display firewall interzone [ zone-name1 zone-name2 ] command to query ASPF information about the interzone.

Configure security features of a virtual firewall on an AR router
The procedure of configuring security features for a virtual firewall is the same as that of configuring for a common firewall. Each firewall must be separately deployed to meet different firewall service requirements. Security features that can be configured include: packet filtering firewall, ASPF, port mapping, session table aging time, and attack defense. Before configuring the following features, specify a VPN instance: manually adding a blacklist/whitelist and configuring ICMP/SYN/UDP flooding defense. The configured features take effect to the firewall only according to the specified VPN instance. For details about the command for configuring security features of a virtual firewall, see the URL: The AR router configures the security features of the virtual firewall .

Configure the basic firewall functions on an AR router
The basic firewall functions of an AR router include: creating a security zone and adding interfaces into the security zone, creating an interzone and enabling the firewall functions in the interzone, configuring session table aging time, and checking the configuration result. For details about the configuration, see the following content: [Creating a security zone and adding interfaces into the security zone on an AR router] Create a security zone and add interfaces into the security zone on an AR router. [Enabling the firewall functions on an AR router] Enable the firewall functions on an AR router. [Configuring session table aging time of the firewall on an AR router] Configure session table aging time of the firewall on an AR router. For details about configuration of basic firewall functions on AR series routers, see the URL: AR router configuration firewall basic functions.

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top