- Products
- Learn
- Local User Groups
- Partners
-
More
Join Us for CPX 360
23-24 February 2021
Important certificate update to CloudGuard Controller, CME,
and Azure HA Security Gateways
How to Remediate Endpoint & VPN
Issues (in versions E81.10 or earlier)
IDC Spotlight -
Uplevel The SOC
Important! R80 and R80.10
End Of Support around the corner (May 2021)
Hi All,
In my organization setup, I have 2 firewalls in cluster in active/standby mode and ISP redundancy configured in load sharing mode (50-50 ratio). The version firewall is running is R80.20.
There is only one default route configured on firewall pointing to ISP-1. I can see failover mechanism is working fine when ISP-1 goes down. checkpoint firewall removes default route pointing towards ISP1 and place default route pointing to ISP2.
But traffic is not traversing through ISP2 link. Traffic traverse through ISP-1 only even if i applied sk105239.
Any suggestions please?
Thanks
Looks like the mechanism explained in sk42636 Controlling connections configured with ISP Redundancy in Load Sharing mod. Other relevant SKs include sk25152 Static NAT fails for outgoing connections through gateway with ISP Redundancy in Load Sharin... sk61692 Troubleshooting ISP Redundancy, sk23630 Advanced configuration options for ISP Redundancy and of course sk32225 Configuring ISP Redundancy so that certain traffic uses specific ISP Link
Hi Gunther,
Just wanted to know for sk25152 : this is valid for active connections. I mean to say if i am accessing any server and primary link goes down will then traffic will nat to backup isp public link and traverse through backup link or i need to re-intiate the connection to server?
Thanks
About CheckMates
Learn Check Point
Advanced Learning
WELCOME TO THE FUTURE OF CYBER SECURITY