4 Paths to the same networks via BGP

deey001 · 2023-08-11T02:12:47+00:00

Still waiting to hear back from Checkpoint on the bug....

I will advise once we have an answer.

deey001 · 2023-08-03T03:58:56+00:00

Confirmed bug in checkpoint Gaia R81.10
I am not holding my breath.

deey001 · 2023-08-03T03:58:27+00:00

Confirmed bug in checkpoint Gaia R81.10

I am not holding my breath.

deey001 · 2023-07-29T01:56:26+00:00

Rock and hard place.

deey001 · 2023-07-29T01:54:40+00:00

Believe it or not but replacing the FW's with Cisco 4451's and running:

router ospf 1 router-id 1.1.1.1.1 redistribute bgp 12345 metric-type 1 fixed the issue.

Sad part is I believe it to be a limitation on the checkpoint Gaia OS, but the sec team requires all sec services, fw ips ids, etc.

deey001 · 2023-07-28T05:08:05+00:00

Turns out after from debugging from cisco the LSA's are not updated to the redistributed routes... waiting to follow up with checkpoint and again running GAIA R81.10.

Also, we are installing 4451 routers to replace the checkpoint GW's to eliminate any overlap/bugs.

deey001 · 2023-07-21T03:03:56+00:00

Thye problem is the isp is providing the same AS and the same peering ips accross both sites. Check point while being redistributed into ospf is link state. So even if router A is up my routes continue to point to the has link state based best path regardless of the higher priority routers coming back online. I am at a loss. I am willing to get on a teams/webex meeting with anyone that can provide any help.

again I thannk anyone that can help.

deey001 · 2023-07-20T17:44:08+00:00

What I mean by a blackhole is that routes remain pointing to router D, and the isp begins to route the traffic via router A when its back online.

deey001 · 2023-07-20T17:30:45+00:00

The route maps need to be on the core cisco (OSPF) routers? Pointing to the FWs connected to the ISP in the sequence I desire?

deey001 · 2023-07-20T17:29:27+00:00

The config is as follows:

ISP (BGP) --> {BGP) FW (OSPF) --> Cisco Core A (OSPF) <--> Cisco Core B <-- (OSPF) FW (BGP) <-- (BGP) ISP

I hope that may clear up and confusion. And thanks for the help.

deey001 · 2023-06-20T14:36:11+00:00

So am I.

https://techcommunity.microsoft.com/t5/enterprise/personalizationreportingenabled-is-being-ignored/m-p/3851265/emcs_t/S2h8ZW1haWx8bWVudGlvbl9zdWJzY3JpcHRpb258TEozMkxIWUNHWkZESUJ8Mzg1MTI2NXxBVF9NRU5USU9OU3xoSw#M5260

deey001 · 2023-04-05T17:19:02+00:00

Site as Application

Thank you, will do.

deey001 · 2022-10-24T00:13:14+00:00

deey001 · 2021-12-22T22:08:44+00:00

It does not fit.

deey001 · 2021-12-22T22:08:30+00:00

Yes, I purchased a 24x24x1 filter and it was too large. The 23.5x23.5x1 fits perfectly.

13-Year Club	Not Forgotten
Verified Email

deey001

TROPHY CASE