Hi, I think you should check Topology on your SmartCenter/Provider-1 used for this gateway. If you change number of VLAN, perhaps name of the VLAN logical interface has changed and need to be change on SmartCenter/Provider-1, then Policy push need to be done? I'm not really sure about this clue, because I use SecurePlateform instead of Nokia, but you should check this... Perhaps other guys from this Checkpoint Mailing list could confirm my way.
Best Regards. -- Fabrice Barutel ------------------------------ Date: Wed, 21 Mar 2007 07:19:49 +0100 From: "David CALLEBAUT [AEMS Be]" <[EMAIL PROTECTED]> Subject: VLAN change = no longer reachable Dear listmembers, Did anybody ever encountered this: Gateway is a CP NG w. AI R55 with latest HFA on a Nokia IP 530 with 3.8.1-BUILD033. A physical interface is configured to have 2 logical IP's using VLAN tagging. Both interfaces were re-distributed in OSPF to our backbone routers (through another interface). Requested by the switching team we needed to change the VLAN number on 1 of those interfaces. So I simply changed the VLAN number in the interface configuration (through voyager), applied and saved. The VLAN changed ok since I could ping a machine from the gateway on that (changed) VLAN. However the interface was no longer distributed in OSPF. On our core routers the route was gone. In the tracker we saw no unusual drops (except from the packets being routed to an incorrect gateway). Turning off the logical interface and turning back on did not change anything. Turning off the redistribution in OSPF and back on: no change. So we did a rollback to the previous VLAN... But the route does not return anymore... During all this no policy push was done. Now we have created a static route on our core routers, but this is a situation that is not wanted.. Did anyone ever run in the same issue? Should I remove the interface completely instead of simply changing the VLAN number? Any help would be great! David C. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
