topic Re: SMB 770 default route not via WAN interface in Spark Firewall (SMB)

SMB 770 default route not via WAN interface

Philip_W2 — Fri, 08 Jun 2018 12:45:24 GMT

Hi,

I'm having trouble setting the default gateway behind another interface but the WAN on my SMB.

Background

For our customer's SMB 770 installation I need to use the following interface config:

WAN: DHCP IP

LAN1: fixed IP + by default traffic needs to be routed this way

LAN2: fixed IP

I configured the following:

1) Internet1 = DHCP, but without "route traffic through this interface by default"

2) LAN2: no issue there, it's just a LAN interface with a connected network

And tried adding the default gateway via LAN1:

1) Configured LAN1 IP in the WebUI (but I'd need to add the default route, which does not accept 0.0.0.0/0).

2) Next I tried adding interface IP and GW via CLI:

set interface LAN1 ipv4-address x.x.x.x mask-length 24 default-gw x.x.x.y

Should be simple, but this returns the error "Failed to find the requested interface"

What am I missing here?

Grtz

Philip

Re: SMB 770 default route not via WAN interface

PhoneBoy — Fri, 08 Jun 2018 19:46:15 GMT

The LAN interface cannot be used as the default route on SMB appliances.

Re: SMB 770 default route not via WAN interface

Philip_W2 — Mon, 11 Jun 2018 09:35:45 GMT

Hi Dameon,

Thanks for your answer.

I filled out a Request for Enhancement for this.

Grtz

Philip

Re: SMB 770 default route not via WAN interface

Maarten_Sjouw — Mon, 18 Jun 2018 20:41:00 GMT

Had similar issue, no Internet connection configured at all.

This is how you solve this issue, let say the nexthop is 10.10.1.15, you just create 2 routes:

add static-route destination 0.0.0.0/1 nexthop gateway ipv4-address 10.10.1.15
add static-route destination 128.0.0.0/1 nexthop gateway ipv4-address 10.10.1.15

Effectively this is 2 half default routes adding up to a default route.

The error about the Interface could be related to the LAN1_Switch, to remove use the following:

delete switch LAN1_Switch
set dhcp server interface LAN1 disable
set interface LAN1 unassigned
set interface LAN1 ipv4-address 10.10.1.1 mask-length 29 state on

Re: SMB 770 default route not via WAN interface

Philip_W2 — Tue, 19 Jun 2018 06:02:00 GMT

Thx Maarten, I'll definitely try that when the issue comes along again!

Re: SMB 770 default route not via WAN interface

Constantin_Pop — Tue, 04 Feb 2020 21:15:38 GMT

Thanks Maarten for the hint, that's ingenious and worked great.

Had this issue with the 1430 appliances...if you're not using the WAN interface you can't setup a default route.
Even if you did enter it manually as 0.0.0.0/8, it would come up as dynamic and would not be used.

IMHO setting a default route shouldn't need such artifacts though.

Re: SMB 770 default route not via WAN interface

Maarten_Sjouw — Tue, 04 Feb 2020 21:26:13 GMT

It's just to bad, but even in R80.20 on the 15x0 it is still not possible to create a Default route on a LAN port.

Re: SMB 770 default route not via WAN interface

Constantin_Pop — Tue, 04 Feb 2020 21:39:45 GMT

That's nice for such a basic feature.
I tried finding this limitation in the docs but doesn't show up anywhere.

Re: SMB 770 default route not via WAN interface

Jose_Garza — Thu, 25 Jan 2024 21:27:22 GMT

If you plan to follow these steps, do not use the "state on" at the end of the command:

set interface LAN1 ipv4-address 10.10.1.1 mask-length 29 state on

Using state on will result in the firewall not setting the IP. (1800 SMB r81.x.x)