Protect Your PIX - Page 5
You added commands to disable RIP on all interfaces. Notice that each interface has two lines associated with that interface: a no rip interface_name passive and a no rip interface_name default command. Each one of these commands accomplishes a different objective. The no rip interface_name passive command causes the PIX to stop listening to RIP updates. The no rip interface_name default command causes the PIX to stop broadcasting known routes through RIP.
RIPv1 and RIPv2 are both available on the PIX through the rip command. Use the no form of the rip command to disable a portion of RIP. Use the show rip command to show the current RIP entries and the clear rip command to clear RIP tables. The full syntax of this command is:
rip interface_name default | passive [version [1 | 2]] [authentication [text | md5 key ( key_id)]]
The parameters and keyword meanings are listed in Table 4-2:
|interface_name||The interface to which this command should be applied.|
|default||Broadcasts a default route on the interface.|
|passive||Enables passive RIP (listening mode) and propagates the RIP tables based on these updates.|
|version</td>||RIP version 1 or 2. Version 2 must be used if encryption is required.|
|authentication||Enables RIP version 2 authentication.|
|text||Sends RIP updates as clear text. This is not a recommended option.|
|md5||Sends RIP update packets using MD5 encryption. Version 2 only.|
|key||This is the key used to encrypt RIP updates for version 2.|
|key_id||The key identification value. Both sides must use the same key. Version 2 only.|
pager lines Command
The pager lines command specifies how many lines are shown when a show config command is issued before a more prompt appears. Although this can be set to almost any value, 24 works well when using standard Telnet applications.