Security

last person joined: 2 hours ago 

Enterprise security using ClearPass Policy Management, ClearPass Security Exchange, IntroSpect, VIA, 360 Security Exchange, Extensions and Policy Enforcement Firewall (PEF).
Expand all | Collapse all

CPPM - Adding network route error

Jump to Best Answer
  • 1.  CPPM - Adding network route error

    Posted Dec 04, 2014 06:50 AM

    Hi All,

     

    [appadmin@CPPM]# network ip add mgmt -d 10.0.0.0/8 -g 172.20.50.1
    ERROR - Failed add route for destination=10.0.0.0/8 via=172.20.50.1

     

    I'm getting the above error when attempting to add the route.

     

    The management interface gateway is 172.20.50.1.

     

    Any tips?

     

    Cheers
    James



  • 2.  RE: CPPM - Adding network route error

    Posted Dec 04, 2014 07:20 AM
    You have the right format , im wondering if maybe you have any spaces at the end ?


  • 3.  RE: CPPM - Adding network route error

    Posted Dec 04, 2014 07:25 AM

    No spaces on the end.. just double checked.

     

    If I change the netmask it's allowing me to add the rule. :s

     

    [appadmin@cppm]# network ip add mgmt -d 10.0.0.0/8 -g 172.20.50.1
    ERROR - Failed add route for destination=10.0.0.0/8 via=172.20.50.1
    [appadmin@cppm]# network ip add mgmt -d 10.0.0.0/9 -g 172.20.50.1
    INFO - Added route for destination=10.0.0.0/9 via=172.20.50.1
    INFO - New ip rule created with the id = 12002



  • 4.  RE: CPPM - Adding network route error

    Posted Dec 04, 2014 07:27 AM

    I guess this'll have to do...


    [appadmin@cppm]# network ip add mgmt -d 10.0.0.0/9 -g 172.20.50.1
    INFO - Added route for destination=10.0.0.0/9 via=172.20.50.1
    INFO - New ip rule created with the id = 12002
    [appadmin@cppm]# network ip add mgmt -d 10.128.0.0/9 -g 172.20.50.1
    INFO - Added route for destination=10.128.0.0/9 via=172.20.50.1
    INFO - New ip rule created with the id = 12003

     

    Can anyone else test adding a /8 netmask on a destination?



  • 5.  RE: CPPM - Adding network route error

    Posted Dec 04, 2014 07:38 AM
    Interesting , I'll try it on my lab and get back to you.

    I'm running the latest OS


  • 6.  RE: CPPM - Adding network route error

    Posted Dec 04, 2014 07:41 AM

    It worked on my lab with /8 with 6.4.3

    2014-12-04 07_40_24-Chrome Remote Desktop.png



  • 7.  RE: CPPM - Adding network route error

    Posted Dec 04, 2014 09:29 AM

    Thank for testing that. 

     

    Funny thing is, there's another CPPM appliance in the install I'm doing. I was able to use the exact same command and it worked. Both cppm are on the same version too! 6.2.2.56893

     

    Hmmm.



  • 8.  RE: CPPM - Adding network route error
    Best Answer

    Posted Dec 10, 2014 07:27 AM

    Not sure why I was unable to add that rule but the following is what I added in the end, which achieved the same result.

     

    network ip add mgmt -d 10.0.0.0/8