>
    RIP
    Focus
    Download PDF
    Focus
    1. Home
    2. PAN-OS
    3. Networking
    4. RIP
    Download PDF

    RIP

    Table of Contents
    End-of-Life (EoL)

    RIP

    Routing Information Protocol (RIP) is an interior gateway protocol (IGP) that was designed for small IP networks. RIP relies on hop count to determine routes; the best routes have the fewest number of hops. RIP is based on UDP and uses port 520 for route updates. By limiting routes to a maximum of 15 hops, the protocol helps prevent the development of routing loops, but also limits the supported network size. If more than 15 hops are required, traffic is not routed. RIP also can take longer to converge than OSPF and other routing protocols. The firewall supports RIP v2.
    Perform the following procedure to configure RIP.
    1. Configure general virtual router configuration settings.
      See Virtual Routers for details.
    2. Configure general RIP configuration settings.
      1. Select the RIP tab.
      2. Select Enable to enable the RIP protocol.
      3. Select Reject Default Route if you do not want to learn any default routes through RIP. This is the recommended, default setting.
        Clear Reject Default Route if you want to permit redistribution of default routes through RIP.
    3. Configure interfaces for RIP.
      1. On the Interfaces tab, select an interface in the Interface configuration section.
      2. Select an already defined interface.
      3. Select Enable.
      4. Select Advertise to advertise a default route to RIP peers with the specified metric value.
      5. (Optional) Select a profile from the Auth Profile list.
      6. Select normal, passive or send-only from the Mode list.
      7. Click OK.
    4. Configure RIP timers.
      1. On the Timers tab, enter a value for Interval Seconds (sec). This setting defines the length of the following RIP timer intervals in seconds (range is 1-60; default is 1).
      2. Specify the Update Intervals to define the number of intervals between route update announcements (range is 1-3,600; default is 30).
      3. Specify the Delete Intervals to define the number of intervals between the time that the route expires to its deletion (range is 1-3,600; default is 180).
      4. Specify the Expire Intervals to define the number of intervals between the time that the route was last updated to its expiration (range is 1-3600; default is 120).
    5. (Optional) Configure Auth Profiles.
      By default, the firewall does not use RIP authentication for the exchange between RIP neighbors. Optionally, you can configure RIP authentication between RIP neighbors by either a simple password or MD5 authentication. MD5 authentication is recommended; it is more secure than a simple password.
      Simple Password RIP authentication
      1. Select Auth Profiles and Add a name for the authentication profile to authenticate RIP messages.
      2. Select Simple Password as the Password Type.
      3. Enter a simple password and then confirm.
      MD5 RIP authentication
      1. Select Auth Profiles and Add a name for the authentication profile to authenticate RIP messages.
      2. Select MD5 as the Password Type.
      3. Add one or more password entries, including:
        • Key-ID (range is 0-255)
        • Key
      4. (Optional) Select Preferred status.
      5. Click OK to specify the key to be used to authenticate outgoing message.
      6. Click OK again in the Virtual Router - RIP Auth Profile dialog box.
    6. Commit your changes.

    © 2024 Palo Alto Networks, Inc. All rights reserved.