This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Blason_R
Leader
Leader
‎2022-04-09 07:20 PM

BGP route-map on Check Point Firewall R80.30 to accept only one desired subnet

HI Team,

I have eBGP configured on 5900 GWs and my version is R80.30. I am currently accepting all traffic from peer. I wanted to know and configure only subnet i.e. 192.168.10.0/24 from that peer and deny others.

Can someone please confirm how do I do that on GAIA clish?

0 Kudos
2 Replies
Chris_Atkinson
Employee
Employee
‎2022-04-10 03:11 AM

Basic example should be something like this:

 

### Routemap Config ###

set routemap Peer-IN id 10 on
set routemap Peer-IN id 10 allow
set routemap Peer-IN id 10 match network 192.168.10.0/24 exact
set routemap Peer-IN id 20 on
set routemap Peer-IN id 20 restrict

### Apply For the Particular AS ###

set bgp external remote-as <AS-NUMBER> import-routemap Peer-IN preference 1 on

### Apply For a specific Peer ###

set bgp external remote-as <AS-NUMBER> peer <PEER-IP> import-routemap Peer-IN preference 1 on

### SAVE ###

save config

0 Kudos
the_rock
Legend
Legend
‎2022-04-10 05:12 AM

This is your best reference:

https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫