OSPF Commands
To configure OSPF on your Security Appliance, you use various commands. To enable OSPF
on your PIX Firewall, you use the router ospf command. The syntax is as follows:
router ospf pid
The pid represents a unique identification for the OSPF routing process in the range from 1
to 65,535. Each OSPF routing process on a single Security Appliance must be unique, and
Security Appliance Version 6.3 supports a maximum of two different OSPF routing
processes.
After you issue the router ospf command, the Security Appliance command prompt enters a
subcommand mode indicated by a command prompt similar to the following:
pix515a(config-router)#
In subcommand mode, you can configure various OSPF parameters (see Table 11-9).
NOTE Your Cisco Security Appliance can filter only Type 3 LSAs. If you configure your
Security Appliance to function as an ASBR in a private network, then information about
your private networks will be sent to the public interfaces, because Type 5 LSAs describing
private networks will be flooded to the entire autonomous system (including the public
areas) unless you configure two separate OSPF processes.
Table 11-9 router ospf Subcommand Options
Parameter Description
area Configures OSPF areas
compatible Runs OSPF in RFC 1583 compatible mode
default-information Distributes a default route
distance Configures administrative distances for OSPF process
ignore Suppresses syslog for receipt of Type 6 (MOSPF) LSAs
log-adj-changes Logs OSPF adjacency changes