Support Center > Search Results > SecureKnowledge Details
Configuring SecurePlatform Pro for RIP Technical Level

The following procedure provides step by step guidance on how to configure RIP dynamic routing on SecurePlatform Pro:

    1. Login to the SecurePlatform Device.

    1. Enter Router Mode by running the command router or cligated.

    1. Enter Privileged Execution mode by running the command enable. If this mode is password protected, you will be prompted for a password.

    1. Enter Global Configuration Mode by running the command config terminal or config t.

    1. At the config prompt (config)#, enable RIP by running the command router rip. You are now in Router Configuration mode. You must now configure the RIP protocol.

      Note: The prompt changes to (config-[protocol_name])# in Router Configuration mode. When in this mode, the order of the commands run is not important. Changes are only performed on exiting the mode.

      To exit the Router Configuration mode and return one mode back, i.e. to the Global Configuration mode, run the exit command. To exit the Router Configuration mode and return to the Main mode, run the end command.

    1. Specify on which interfaces RIP will be running, by using network ipv4_address [ wildcard ].

      (Example of Wildcard: If Network Mask =, then Wildcard =

    2. Configure RIP filtering. You may use one of the following commands:
        • distribute-list: Configures policy for RIP to apply to incoming or outgoing updates.

        • trusted-gateways: Configures the routers from which RIP will accept updates, i.e. routes.

          Note: Use of trusted gateways may prevent learning routes from certain sources.

      • source-gateways: Specifies the routers to which RIP will unicast update messages.
    3. Enter <?> to see optional commands (e.g. redistribute). The redistribute command inserts external routes into a current instance of the RIP protocol. You may want to redistribute direct or kernel routes into the RIP advertisements. The command syntax is: redistribute <protocol>.
        • redistribute direct: Redistribute routes defined by OS according to interface IPs.

      • redistribute kernel: Redistribute routes defined from sysconfig or SecurePlatform shell.

    1. At the (config-router-rip)# prompt, run the command enable.

    1. Exit the Router Configuration mode and return one mode back, i.e. to the Global Configuration mode, by running the exit command.

    1. At the config prompt (config)#, enter the following commands for the interfaces that you want to enable router discovery on:

      router-discovery router-discovery lifetime time-seconds
      router-discovery router-discovery maximum-interval time-seconds
      router-discovery router-discovery minimum-interval time-seconds

      For example:
      (config)# interface fxp0
      (config-if)# router-discovery lifetime 1800
      (config-if)# exit

      The accepted ranges for each of the values is shown below. (You may use the default values.):

        • lifetime (Lifetime for this interface): (4-9000) seconds (default: 1800)

        • maximum-interval (Maximum advertisement interval): (4-1800) seconds (default: 600)

      • minimum-interval (Minimum advertisement interval): (3-1800) seconds (default: 450)

  1. After these values are entered, exit Router Configuration mode and then exit Global Configuration mode.

    Once you return to the Privileged Execution mode, if you want these values to be saved through reboot or different gated sessions, you must store all the applied changes. Do so by running the command write memory.

For more detailed command syntaxes and additional information, refer to: CheckPoint_R62_SecurePlatformPro_and_Advanced_Routing_Suite_CLI Guide

This solution is about products that are no longer supported and it will not be updated

Give us Feedback
Please rate this document