add static route to 1450

nflnetwork29 · ‎2020-07-08

hello im trying to add a static route to my checkpoint but the route is showing inactive . i dont see anywhere to enable it . what am i missing ?

G_W_Albrecht · ‎2020-07-09

Try it using CLI, see Check Point 700/900/1400 Appliance Technical Reference Guide R77.20.87 p.432ff for details!

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist

PhoneBoy · ‎2020-07-18

If the next hop is not on a directly connected network it won’t necessarily be active.

chrominek · ‎2021-05-11

I have something similar on 1570 dual internet (WAN primary cell0 secondary). After a few firmware updates (requested by CP support), all the traffic goes over LTE, and on WAN only ping probes (successful). WAN is primary active, any routing over wan (GUI/clish) ends with the inactive state. Default gateway over WAN is not visible on gui/clish, only over LTE (cell0). WAN is not answering ping requests. The only traffic is the ping probe by system (answered) and the probe state is green for all servers.

But "route add target_ip gw gw_ip" from linux - works. Route appears in gui as a system route and appliance works perfect (until interface down/restart).

Any idea how to force WAN to work, without forcing it at system level? By the way, where is the best place to place ifup-WAN command?

I guess about /31 netmask on WAN, but it is now common ...

G_W_Albrecht · ‎2021-05-12

I would involve TAC here...

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist

Are you a member of CheckMates?

add static route to 1450