RIP configuration steps

The steps below describe how to configure RIP in Sophos XG Firewall.

To configure RIP, do as follows:

  1. Select Option 3 (route Configuration) > Option 1 (Configure unicast Routing) > option 1 (Configure RIP). You then see the following prompt:
    rip>
  2. Type enable.

    Enables RIP routing process and places you in Global Configuration mode.

  3. Specify a list of networks for the RIP routing process. This requires a series of commands:
    Note During initial setup these commands will need to be entered sequentially.
    OptionDescription

    configure terminal

    Enables RIP configuration mode which places you in the router configuration mode and allows you to configure RIP from the terminal.

    router rip

    Allows you to configure and start the RIP routing process.

    network ip-address/subnet mask

    Specify IP address and subnet information

    For example, if the network for 10.0.0.0/24 is RIP enabled, this results in all the addresses from 10.0.0.0 to 10.0.0.255 being enabled for RIP.

    Enables RIP interfaces between specified network address. RIP routing updates are sent and received only through interfaces on this network.

    Also, if the network of an interface is not specified, the interface isn't advertised in any RIP update. The interfaces which have addresses matching with network are enabled.

    end

    Exits from the Router Configuration mode and places you into the Enable mode.

  4. To configure authentication, do as follows:
    Note During initial setup these commands will need to be entered sequentially.
    OptionDescription
    rip#configure terminal

    Enables RIP configuration mode which places you in router configuration mode and allows you to configure from the terminal.

    rip(config)#interface ifname

    Select the interface on which you wish to configure authentication.

    rip(config-if)#ip rip authentication mode{text[ string]}

    To set authentication mode as text and set the authentication string. Defines authentication mode for each interface. By default, authentication is enabled for all interfaces. If authentication is not required for any of the interfaces, you should disable it.

    RIP Version 1 doesn't support authentication. RIP Version 2 supports Clear Text (simple password) or Keyed Message Digest 5 (MD5) authentication.

    To enable authentication for RIP Version 2 packets and to specify the set of keys that can be used on an interface, use the IP RIP authentication key-chain command in interface configuration mode. If authentication isn't required for any of the interfaces, use the no form of this command.

    Example:

    rip(config)#interface A
    rip(config-if)#ip rip authentication modetext
    rip(config-if)#ip rip authentication stringteststring
    rip(config)#interface ifname

    See description above.

    rip(config-if)#ip rip authentication mode {md5[Key-chain name of key-chain]}

    To set authentication mode as MD5 and set the authentication string.

    Example:

    rip(config)#interface A
    rip(config-if)#ip rip authentication modemd5key-chain testkeychain
    rip(config)#interface ifname

    See description above.

    rip(config-if)#no ip rip authentication mode

    Disables authentication

    Example:

    rip(config)#interface A
    rip(config-if)#no ip rip authentication mode
    rip(config-if)#end

    Exits from router configuration mode and places you into enable mode.

  5. Exit to the router management menu.
    rip(config-if)#exit