Kernel Options
Introduction
Route Injection Mechanism (RIM) enables a Security Gateway
Dedicated Check Point server that runs Check Point software to inspect traffic and enforce Security Policies for connected network resources. to use dynamic routing protocols to propagate the encryption domain of a VPN peer Security Gateway to the internal network and then initiate back connections.
When a Security Gateway establishes a VPN tunnel, RIM updates the local routing table of the Security Gateway to include the encryption domain of the VPN peer.
In Gaia Check Point security operating system that combines the strengths of both SecurePlatform and IPSO operating systems., the Route Injection Mechanism adds routes directly to the kernel.
You must explicitly configure Gaia to keep these routes in the kernel.
For more about configuring RIM, see the R81 Site to Site VPN Administration Guide.
|
|
Important - In a Cluster |
Configuring Kernel Routes in Gaia Portal
To configure Gaia to keep the RIM routes in kernel:
-
From the left navigation tree, click Advanced Routing > Routing Options.
-
In the Kernel Options section, select the Kernel Routes option.
-
In the Routing Options section (at the top), click Apply.
To configure Gaia not to keep the RIM routes in kernel:
-
From the left navigation tree, click Advanced Routing > Routing Options.
-
In the Kernel Options section, clear the Kernel Routes option.
-
In the Routing Options section (at the top), click Apply.
Configuring Kernel Routes in Gaia Clish
To configure Gaia keep the RIM routes in kernel:
-
Enable the option:
set kernel-routes on -
Save the configuration:
save config -
Examine the configuration:
show configuration kernel-routes
To configure Gaia not to keep the RIM routes in kernel:
-
Disable the option:
set kernel-routes off -
Save the configuration:
save config -
Examine the configuration:
show configuration kernel-routes