When you use the Global Properties’ default settings on R76, which type of traffic will be dropped
if NO explicit rule allows the traffic?
A.
Firewall logging and ICA key-exchange information
B.
RIP traffic
C.
Outgoing traffic originating from the Security Gateway
D.
SmartUpdate connections
Explanation:
Solution ID: sk39960
RIP version 1
RIPv1 runs over UDP port 520. It sends and receives all messages on this port. All messages are sent to the local broadcast address. To enable RIPv1, add a rule to allow all Security Gateway’s neighbors to send messages to UDP port 520 on the local broadcast network.
Source Destination Service Action Install On
Neighbor_1 Network_1_Broadcast_Address rip Accept Relevant Security Gateways
Neighbor_2 Network_2_Broadcast_Address rip Accept Relevant Security Gateways
Neighbor_3 Network_3_Broadcast_Address rip Accept Relevant Security Gateways
_____________________________________________________________________________________________________________________________________________________
RIP version 2
RIPv2 can use either the RIPv1 broadcast transport mechanism, or a multicast transport – 224.0.0.9 (RIP v2). To enable RIPv2 in multicast mode, create a Host object that will represent 224.0.0.9 and call it, for example ‘RIP2-ROUTERS.MCAST.NET’.
Source Destination Service Action Install On
Neighbors ‘RIP2-ROUTERS.MCAST.NET’ (224.0.0.9) rip Accept Relevant Security Gateways