01-24-2019 01:27 AM - edited 02-21-2020 08:41 AM
Please see my attach file (router1-FTD-router2), all devices in area 0.
Does I need policy to permit ospf like these to permit ospf protocol go through FTD?
- source: 10.0.1.0/24 destination: 192.168.1.0/24 service/application: OSPF
- source: 192.168.1.0/24destination: 10.0.1.0/24 service/application: OSPF
Thank you!
01-24-2019 01:14 PM
Are you attempting to establish an OSPF neighbour ship between the two routers, though the firewall and the firewall not being part of your ospf process?
the FTD would need to allow protocol 89 (OSPF) between interfaces.
01-26-2019 08:03 AM - edited 01-26-2019 09:44 PM
Dear Dennis,
I want to establish OSPF neighbour between FTD with R1 and R2
Thanks
01-28-2019 10:46 PM
If the FTD is going to be a part of the OSPF process then you only need access rules that allow regular data traffic. No extra rules needed if the FTD is going to establish OSPF neighbor with the routers.
01-24-2019 03:44 PM
I assume the FTD in transparent mode and R1 is as internal network and R2 is external network. if not change it according to your design. your rule would be like this. in below example outside = external network and BIG_BOX = internal network
Multicast address of ospf are 225.0.0.5,224.0.0.6
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: