Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
RemoteUser
Advisor
Jump to solution

Request for Advice – Changing Management Interface and Default Gateway Without Connectivity Loss

Hi guys,
I have an activity planned for this weekend and I need some advice.

We currently have the eth1-04 interface configured as the management interface, but the customer wants to switch it and use eth1-02 as the new management interface, with a new IP address and new routes. Additionally, the default gateway on the firewall will be changed to a different subnet.

What’s the best way to perform this change without losing connectivity at any point?
What steps would you recommend to follow?

Thanks a lot!

0 Kudos
2 Solutions

Accepted Solutions
the_rock
Legend
Legend

Hey bro,

See if this helps:

https://community.checkpoint.com/t5/Security-Gateways/Changing-Mgmt-interface-on-gateway-cluster/td-...

Btw, whats super important is route is 100% right AND you can click "get interfaces WITHOUT topology" in smart console to ensure it does not give an error. If you can test this in the lab, even better, but if not, then I would make note of all the steps, so its easy to go back. Take at least a backup or show configuration from clish, or both.

Andy

View solution in original post

0 Kudos
RemoteUser
Advisor

So basically this is the step:
1) Configure interface with the new IP from gaia
2) Set the new interface as Mgmt interface
3) Get intrface whitowht topology
4) Install policy
5) Change the default gatreway from clish 

Right?

View solution in original post

0 Kudos
3 Replies
the_rock
Legend
Legend

Hey bro,

See if this helps:

https://community.checkpoint.com/t5/Security-Gateways/Changing-Mgmt-interface-on-gateway-cluster/td-...

Btw, whats super important is route is 100% right AND you can click "get interfaces WITHOUT topology" in smart console to ensure it does not give an error. If you can test this in the lab, even better, but if not, then I would make note of all the steps, so its easy to go back. Take at least a backup or show configuration from clish, or both.

Andy

0 Kudos
RemoteUser
Advisor

So basically this is the step:
1) Configure interface with the new IP from gaia
2) Set the new interface as Mgmt interface
3) Get intrface whitowht topology
4) Install policy
5) Change the default gatreway from clish 

Right?

0 Kudos
the_rock
Legend
Legend

You got it.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    Tue 07 Oct 2025 @ 09:30 AM (CEST)

    CheckMates Live Denmark!
    CheckMates Events