- CheckMates
- :
- Products
- :
- CloudMates Products
- :
- Cloud Network Security
- :
- Discussion
- :
- Re: what routes are created on the gateway by the ...
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Are you a member of CheckMates?
×- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
what routes are created on the gateway by the deployment of Cluster on Azure
I'm taking over for someone who had initiated a deployment of CheckPoint cluster on Azure and I'm curious about the routes I see on the gateways.
I added a route for vnet routing
10.0.0.0/16 10.0.2.1
but there are routes already there. I don't know if there created automatically by the deployment or if they were manually created by someone.
168.63.129.16/32 10.0.1.1
169.254.169.254/32 10.0.1.1
any ideas what those are for?
also should the default route point to 10.0.1.1?
10.0.1.0 being the frontend and 10.0.2.0 being the backend.
thanks
Accepted Solutions
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
If you look at an initially deployed Cloudguard Box then check out the configured DNS Servers and you will find that there are Static Routes deployed for those DNS Server addreses.
Those will be those 168.x.x.x. and 169.x.x..x static routes
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Azure will use the first IP (.1) in any given subnet for its default router.
In my experience, I've see the default route inside of Gaia get set.
Like you, I've seen the 168.x.x.x and 169.x.x.x routes get set as well. But I have no idea what they're for. I don't permit access to them in my policy and haven't seen any ill effects.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
If you look at an initially deployed Cloudguard Box then check out the configured DNS Servers and you will find that there are Static Routes deployed for those DNS Server addreses.
Those will be those 168.x.x.x. and 169.x.x..x static routes