Brocade Mobility RFS Controller System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual
Page 469
Brocade Mobility RFS Controller System Reference Guide
457
53-1003099-01
8
22. Refer to the DHCP Relay field to set or override the DHCP relay server configuration used with
the virtual interface.:
23. Define the NAT Direction as either Inside, Outside or None. Network Address Translation (NAT),
is an Internet standard that enables a (LAN) to use IP addresses for internal traffic (inside) and
a second set of addresses for external (outside) traffic.
24. Select OK to save the changes to the basic configuration. Select Reset to revert to the last
saved configuration.
25. Select the Security tab.
FIGURE 47
OSPF Virtual Interface - Security screen
26. Use the Inbound IP Firewall Rules drop-down menu to select the IP access and deny rule set to
apply to the OSPF dynamic route.
Either select an existing IP firewall policy or use the default set of IP firewall rules. The firewall
inspects OSPF route traffic flows and detects potential attacks on the dynamic route not visible
to traditional wired firewall appliances. Select the Create icon to define a new set of IP firewall
rules that can be applied to the OSPF route configuration. Selecting Edit allows for the
modification of an existing IP firewall rules configuration.
Respond to DHCP Relay
Packets
Select the Respond to DHCP Relay Packets option to allow the onboard DHCP server to respond to
relayed DHCP packets on this interface. This setting is disabled by default.
DHCP Relay
Provide IP addresses for DHCP server relay resources. The interface VLAN and gateway should have
their IP addresses set. The interface VLAN and gateway interface should not have DHCP client or
DHCP Server enabled. DHCP packets cannot be relayed to an onboard DHCP Server. The interface
VLAN and gateway interface cannot be the same. When changing from a default DHCP address to a
fixed IP address, set a static route first. This is critical when the controller or service platform is being
accessed from a subnet not directly connected and the default route was set from DHCP.