RIPng — RIP and IPv6
RIP next generation, or RIPng, is the version of RIP that supports IPv6.
This is an example of a typical small network configuration using RIPng routing.
Your internal R&D network is working on a project for a large international telecom company that uses IPv6. For this reason, you have to run IPv6 on your internal network and you have decided to use only IPv6 addresses.
Your network has two FortiGate units running the RIPng dynamic routing protocol. Both FortiGate units are connected to the ISP router and the internal network. This configuration provides some redundancy for the R&D internal network enabling it to reach the Internet at all times.
This section includes the following topics:
- Network layout and assumptions
- Configuring the FortiGate units system information
- Configuring RIPng on FortiGate units
- Configuring other network devices
- Testing the configuration
Network layout and assumptions
Basic network layout
Your internal R&D network is working on a project for a large international telecom company that uses IPv6. For this reason, you have to run IPv6 on your internal network and you have decided to use only IPv6 addresses.
Your network has two FortiGate units running the RIPng dynamic routing protocol. Both FortiGate units are connected to the ISP router and the internal network. This configuration provides some redundancy for the R&D internal network enabling it to reach the Internet at all times.
All internal computers use RIP routing, so no static routing is required. And all internal computers use IPv6 addresses.
Where possible in this example, the default values will be used or the most general settings. This is intended to provide an easier configuration that will require less troubleshooting.
In this example the routers, networks, interfaces used, and IP addresses are as follows.
RIP example network topology
| Network | Router | Interface & Alias | IPv6 address |
|
R&D |
Router1 |
port1 (internal) |
2002:A0B:6565:0:0:0:0:0 |
|
port2 (ISP) |
2002:AC14:7865:0:0:0:0:0 |
||
|
Router2 |
port1 (internal) |
2002:A0B:6566:0:0:0:0:0 |
|
|
port2 (ISP) |
2002:AC14:7866:0:0:0:0:0 |
Network topology for the IPV6 RIPng example
Assumptions
The following assumptions have been made concerning this example.
- All FortiGate units have 5.0 firmware, and are running factory default settings.
- All CLI and web-based manager navigation assumes the unit is running in NAT/Route operating mode, with VDOMs disabled.
- All FortiGate units have interfaces labelled port1 and port2 as required.
- All firewalls have been configured for each FortiGate unit to allow the required traffic to flow across interfaces.
- All network devices are support IPv6 and are running RIPng.
Configuring the FortiGate units system information
Each FortiGate unit needs IPv6 enabled, a new hostname, and interfaces configured.
To configure system information on Router1 – web-based manager
1. Go to System > Dashboard > Status.
2. For Host name, select Change.
3. Enter “Router1”.
4. Go to System > Config > Features.
5. In Basic Features, enable IPv6, and select Apply.
6. Go to System > Network > Interfaces.
7. Edit port1 (internal) interface.
8. Set the following information, and select OK.
Alias internal
IP/Network Mask 2002:A0B:6565::/0
Administrative Access HTTPS SSH PING
Description Internal RnD network
Administrative Status Up
9. Edit port2 (ISP) interface.
10. Set the following information, and select OK.
Alias ISP
IP/Network Mask 2002:AC14:7865::/0
Administrative Access HTTPS SSH PING
Description ISP and Internet
Administrative Status Up
To configure system information on Router1 – CLI
config system global set hostname Router1 set gui-ipv6 enable
end
config system interface edit port1
set alias internal
set allowaccess https ping ssh
set description “Internal RnD network”
config ipv6
set ip6-address 2002:a0b:6565::/0 end
next
edit port2
set alias ISP
set allowaccess https ping ssh
set description “ISP and Internet”
config ipv6
set ip6-address 2002:AC14:7865::
end end
To configure system information on Router2 – web-based manager
1. Go to System > Dashboard > Status.
2. For Host name, select Change.
3. Enter “Router2”.
4. Go to System > Config > Features.
5. In Basic Features, enable IPv6, and select Apply.
6. Go to System > Network > Interfaces.
7. Edit port1 (internal) interface.
8. Set the following information, and select OK.
Alias internal
IP/Network Mask 2002:A0B:6566::/0
Administrative Access HTTPS SSH PING
Description Internal RnD network
Administrative Status Up
9. Edit port2 (ISP) interface.
10. Set the following information, and select OK.
Alias ISP
IP/Network Mask 2002:AC14:7866::/0
Administrative Access HTTPS SSH PING
Description ISP and Internet
Administrative Status Up
To configure system information on Router2 – CLI
config system global set hostname Router2 set gui-ipv6 enable
end
config system interface edit port1
set alias internal
set allowaccess https ping ssh
set description “Internal RnD network”
config ipv6
set ip6-address 2002:a0b:6566::/0 end
next
edit port2
set alias ISP
set allowaccess https ping ssh
set description “ISP and Internet”
config ipv6
set ip6-address 2002:AC14:7866::
end end
Having trouble configuring your Fortinet hardware or have some questions you need answered? Check Out The Fortinet Guru Youtube Channel! Want someone else to deal with it for you? Get some consulting from Fortinet GURU!