Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
nflnetwork29
Collaborator

add static route to 1450

hello im trying to add a static route to my checkpoint but the route is showing inactive . i dont see anywhere to enable it . what am i missing ?

0 Kudos
4 Replies
G_W_Albrecht
Legend
Legend

Try it using CLI, see Check Point 700/900/1400 Appliance Technical Reference Guide R77.20.87 p.432ff for details!

0 Kudos
PhoneBoy
Admin
Admin

If the next hop is not on a directly connected network it won’t necessarily be active.

0 Kudos
chrominek
Explorer

I have something similar on 1570 dual internet (WAN primary cell0 secondary). After a few firmware updates (requested by CP support), all the traffic goes over LTE, and on WAN only ping probes (successful). WAN is primary active, any routing over wan (GUI/clish) ends with the  inactive state. Default gateway over WAN is not visible on gui/clish, only over LTE (cell0). WAN is not answering ping requests. The only traffic is the ping probe by system (answered) and the probe state is green for all servers.

But "route add target_ip gw gw_ip" from linux - works. Route appears in gui as a system route and appliance works perfect (until interface down/restart). 

Any idea how to force WAN to work, without forcing it at system level? By the way, where is the best place to place ifup-WAN command?

I guess about /31 netmask on WAN, but it is now common ... 

 

0 Kudos
G_W_Albrecht
Legend
Legend

I would involve TAC here...

0 Kudos