Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
990
Views
5
Helpful
1
Replies

Is it possible to take an interface down using IP SLA

carl_townshend
Spotlight
Spotlight

‎01-28-2019 06:15 AM

Hi All

I have an issue whereby I am routing to a next hop from a Checkpoint firewall, the next hop being a Cisco router.

if the WAN side of the router goes down the Checkpoint will still route packets to the router and get dropped.

Would it be possible to track an ip route on the wan on the router and if this route goes, would it be possible to shutdown  the LAN interface on the router? that way the Checkpoint firewall will take the route out of its table.

I don't think its possible we can use OSPF etc else it would be easier.

cheers

Labels:
0 Helpful
1 Reply 1

Mark Malone
VIP Alumni
VIP Alumni

‎01-28-2019 06:36 AM

Hi
ive seen posts like this before example below , it can be done with an EEM script in conjunction with the ip sla commands
instead of ping track an upstream route with the ip sla and tracking then use the EEM to shut the interface
You could also add to the script to bring the interface backup if it sees the route come back in the table

https://community.cisco.com/t5/network-management/shut-an-interface-if-no-ping-response-using-ip-sla-eem/td-p/1378421
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card