Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
rizo
Explorer

Cluster xl with bgp multihome

Hi , 

Supposed  I have 2 gateways  active passive cluster  , and need to connect 2 different isp with bgp having my own as 

How can I keep my external ip reachable  from all interfaces ? (Loobback) reachable  from both interfaces ? 

What is best practice to implement this scenario  

Thank you 

0 Kudos
2 Replies
Chris_Atkinson
Employee Employee
Employee

If the external IP is the VIP is it part of a /24 network or similar that you have control over? 

Otherwise the use of Loopbacks with Dynamic Routing in ClusterXL environments needs version R81.10

Things like grace-full restart are recommend here along with the appropriate routing policy to advertise routes to both ISPs.

 

Refer also: sk103047sk95967 | sk100499 

 

If the ISP were the same the configuration would vary some per:

https://community.checkpoint.com/t5/Security-Gateways/AS-Path-prepending-to-two-different-peers-in-t...

 

CCSM R77/R80/ELITE
0 Kudos
rizo
Explorer

Hi Chris !

Yes the ip of the vip is my real ip but still the vip is on port 1 on both machines  , I ask can I create vip with my external  address so it can be reached  from all interfaces ? 

Like a loopback vip or something?

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events