4. Dynamically remove static routes when gateway down

Dynamically remove static routes when gateway down

  • K

    Hi,

    I have a pFSense 2.2.6 firewall configured with static routes pointing to my WAN gateway e.g. 62.0.0.0/16. I also have OpenBGPD running to advertise these prefixes to a BGP router on my LAN side. The issue is that I would like to only advertise the prefixes ONLY IF they are reachable to avoid blackholing.

    Normally on a Cisco router I would do the following:
    1. Create an IP SLA track to monitor an IP address on the internet e.g. 8.8.8.8
    2. Configure static routes pointing to the WAN gateway but tracked against the IP SLA
    3. Redistribute the static routes into BGP

    This would mean that while the IP SLA was 'up', the static routes would be injected into the routing table which in turn would then get redistributed into BGP. If the IP SLA went 'down' the static routes would drop out of the routing table and hence out of BGP too.

    Is there a way to do this in pFSense?

    I can see that pFSense can monitor Gateway health and you can even set it with an 'Alternate Gateway IP' to monitor 8.8.8.8) so I could monitor but there doesn't seem to be any obvious way for it to remove the static routes when the gateway goes 'offline'.

    There might be a completely different way to do this so appreciate any thoughts on this!

    0
  • S

    Did you ever find a solution to your problem?

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy