Tuesday 26 July 2016

add a route on checkpoint CLI

route add -net 10.5.140.0/24 gw 192.168.0.1 (works for lgma need write mode on FW you are adding the route on open the correct policy for each fw before making the change)

Remove a route worked on PH
route del -net 192.168.80.0/20 gw 192.168.80.51


route add -net 192.168.80.0/20 dev eth15
gives this kind of route
192.168.80.0    0.0.0.0         255.255.240.0   U         0 0          0 eth15

Maybe this in newer versions
https://supportcenter.checkpoint.com/supportcenter/portal%3FeventSubmit_doGoviewsolutiondetails%3D%26solutionid%3Dsk39746

clish (enter clish if no already there)
set static-route 192.168.0.0/24 nexthop gateway address 10.0.0.1 priority 1 on
save config
exit
(works on REV fws)

Watch out for NAT's you may need to add to grp_No_NAT
There may be a static server NAT for the server.

Show routes
netstat -nr - show all routes

netstat -nr | grep 10.5.140

185.5.241.204
Posted by at
Labels: , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)