This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Matlu
MVP Silver
MVP Silver
‎2025-06-11 04:24 PM
Jump to solution

Static Routes in VS

Hello,
Is there a way to create many static routes by a script for a VSX environment?
We have quite a large list of static routes that we need to create in some instances (VS) of our VSX Cluster, and we want to know if we can use some “automated” to accomplish this task.
Thanks for your recommendations.

0 Kudos
1 Solution

Accepted Solutions
Chris_Atkinson
MVP Platinum CHKP MVP Platinum CHKP
MVP Platinum CHKP
‎2025-06-11 04:41 PM
Jump to solution

Explore the Vsx provisioning tool on MGMT i.e.

https://sc1.checkpoint.com/documents/R81.10/WebAdminGuides/EN/CP_R81.10_VSX_AdminGuide/Topics-VSXG/C...

CCSM R77/R80/ELITE

View solution in original post

8 Replies
the_rock
MVP Diamond
MVP Diamond
‎2025-06-11 04:32 PM
Jump to solution

Maybe script like below?

#!/bin/bash

# Set the VSID you want to configure
VSID=3
vsenv $VSID

# Define your routes as destination/gateway/interface
ROUTES=(
"10.0.1.0/24 192.168.1.1 eth1"
"10.0.2.0/24 192.168.1.2 eth2"
"10.0.3.0/24 192.168.1.3 eth3"
)

for ROUTE in "${ROUTES[@]}"; do
set -- $ROUTE
DEST=$1
GW=$2
IFACE=$3

clish -c "add static-route $DEST nexthop gateway address $GW on interface $IFACE"
done

clish -c "save config"

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos
Chris_Atkinson
MVP Platinum CHKP MVP Platinum CHKP
MVP Platinum CHKP
‎2025-06-11 04:35 PM
In response to the_rock
Jump to solution

Static routes are not configurable (supported) via CLI for VSX locally on the gateway, this information is deployed via Management.

Also one of the advantages of VSnext was API parity.

CCSM R77/R80/ELITE
0 Kudos
the_rock
MVP Diamond
MVP Diamond
‎2025-06-11 04:38 PM
In response to Chris_Atkinson
Jump to solution

Im pretty positive you can (I had done it before), but cant recall exactly how...had to do some changes via vsx_provisioning_tool on mgmt first.

Andy

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos
Matlu
MVP Silver
MVP Silver
‎2025-06-11 04:39 PM
In response to Chris_Atkinson
Jump to solution

So, there is no “automated” way to accomplish this task?

You can only manually (1x1) configure the routes through the SmartConsole?

0 Kudos
Chris_Atkinson
MVP Platinum CHKP MVP Platinum CHKP
MVP Platinum CHKP
‎2025-06-11 05:06 PM
In response to Matlu
Jump to solution

There is no API only the vsx_provisioning_tool (which you can use in batches) that I posted a link to that is run from the Mgmt.

Refer: https://www.youtube.com/watch?v=Tbgg64zB-vk by @Magnus-Holmberg 

CCSM R77/R80/ELITE
0 Kudos
the_rock
MVP Diamond
MVP Diamond
‎2025-06-11 05:08 PM
In response to Matlu
Jump to solution

Definitely no API bro.

Andy

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos
_Val_
Admin
Admin
‎2025-06-12 12:21 AM
In response to the_rock
Jump to solution

Nope, the only correct way is to set routes on the MGMT side. VSX provisioning tool is the answer, if you want to set many routes.

0 Kudos
Chris_Atkinson
MVP Platinum CHKP MVP Platinum CHKP
MVP Platinum CHKP
‎2025-06-11 04:41 PM
Jump to solution

Explore the Vsx provisioning tool on MGMT i.e.

https://sc1.checkpoint.com/documents/R81.10/WebAdminGuides/EN/CP_R81.10_VSX_AdminGuide/Topics-VSXG/C...

CCSM R77/R80/ELITE

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events