This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Andy_N
Contributor
‎2018-02-14 01:02 AM
Jump to solution

Configuring Cluster Addresses on Different Subnets

I’ve got 2 appliances with R80.10 version. I need configure HA ClusterXL.

But unfortunately only one valid IP was given to our company. Behind FW we use 192.168.0.0/16, 172.16.0.0/16 and 10.0.0.0/8 subnets.

Admin guide describe to use any IP on external interfaces ( ex. 10.1.1.0/30) and configure VIP with valid IP .

How do I need to make static routes on each node?

For internal subnets I did routes, but for external  I don’t know which routes I need do.

Thanks

Preview file
33 KB
1 Solution

Accepted Solutions
AlekseiShelepov
Advisor
‎2018-02-14 04:11 AM
Jump to solution

Configuring Cluster Addresses on Different Subnets 

You need to create a scopelocal route for that interface.

In CLI:

set static-route <Public-IP> nexthop gateway logical <Interface> on
set static-route <Public-IP> scopelocal on

And there is a checkbox for the same thing in Web-interface.

View solution in original post

8 Replies
AlekseiShelepov
Advisor
‎2018-02-14 04:11 AM
Jump to solution

Configuring Cluster Addresses on Different Subnets 

You need to create a scopelocal route for that interface.

In CLI:

set static-route <Public-IP> nexthop gateway logical <Interface> on
set static-route <Public-IP> scopelocal on

And there is a checkbox for the same thing in Web-interface.

Andy_N
Contributor
‎2018-02-14 05:01 AM
In response to AlekseiShelepov
Jump to solution

Big thanks!!!!

0 Kudos
Leader_Kiongi
Contributor
‎2023-10-09 11:32 PM
In response to AlekseiShelepov
Jump to solution

Thanks a lot @AlekseiShelepov , you saved my day. Why on earth is this command "set static-route <Public-IP> scopelocal on" NOT mentionned in admin guide ? If you don't add this, the routes through local interface don't appear in the routing table! Incredible

0 Kudos
Mario_Fambach
Explorer
Explorer
‎2018-03-15 05:19 AM
Jump to solution

I'm running into the same problem like Andrey, but I've got two 1400 series appliances with embeded gaia R77.20.75. It seems embeded gaia does not support scopelocal (sk32073). Any Idea how to solve this on embeded gaia?

Thanks!

Mario

0 Kudos
G_W_Albrecht
MVP Silver
MVP Silver
‎2018-03-22 06:36 AM
Jump to solution

Afaik this is supported by GAiA + ClusterXL only, not Embedded GAiA - the only two Advanced Settings for Clusters are only present in StandAlone SMBs (Cluster - Use virtual MAC and NAT - Perform cluster hide fold). And sk32073 Configuring Cluster Addresses on Different Subnets is only for GAiA and SecurePlatform.

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
Chinmaya_Naik
Advisor
‎2020-06-11 12:37 AM
In response to G_W_Albrecht
Jump to solution

Hi Checkmates,

Is this also support in R80.30.

We already implemented in R80.10 but we plane to upgrade to R80.30.

So kindly update if some done this in R80.30.

Thanks and Regards

@Chinmaya_Naik 

Andy_N
Contributor
‎2020-06-18 11:10 PM
In response to Chinmaya_Naik
Jump to solution

Hi, yes R80.30 supported.
We've upgraded from R80.20 to R80.20 - works fine
Chinmaya_Naik
Advisor
‎2020-07-18 10:46 AM
In response to Andy_N
Jump to solution

@Andy_N 

Thanks for the update

CLusterXL R80.30 Administration Guide:

cluster with one public IP.png

We done this activity withone any issue.

Regards

@Chinmaya_Naik 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events