Article Content
Article Number | 000017543 |
Applies To | RSA Product Set: SecurID RSA Product/Service Type: Authentication Manager RSA Version/Condition: 8.x |
Issue | This article explains how to add a static route in RSA Authentication Manager 8.x. This is useful because static routes added by using the route add command do not work. |
Resolution | The static routes need to be added into both /etc/sysconfig/network/routes and /etc/sysconfig/network/ifroute-eth0. They also need to be added to /etc/sysconfig/network/ifroute-eth1, if the second NIC is enabled in Authentication Manager 8.x. Once the change(s) is made, the command service network restart needs to be run. The entries in the routing configuration files look like this:
To omit GATEWAY, NETMASK, PREFIXLEN, or INTERFACE, write - instead. The entries TYPE and OPTIONS may just be omitted.
The entries in the routing configuration files look like this:
For more information, see information from SUSE on Configuring a Network Connection Manually. |
Workaround | The RSA Authentication Manager 8.2 SP1 Administrator's Guide gives a slightly different method to add the static route, with Teth0 table or corresponding Table Below is a synopsis of How to Add a Persistent IPv4 Static Route. Refer to the RSA Authentication Manager 8.1 Administrator's Guide for full details.
Note that during Quick Setup another user name may have been selected. Use that user name to login.
For example, to add a persistent static route that sends all network traffic for any host in the 10.100.212.0 subnet (that uses the subnet mask 255.255.252.0) to the gateway 10.100.219.102, type:
Notes: • eth0 specifies the network interface, for example, eth0 or eth1. • Teth0 specifies the table in the network interface routing file, such as Teth0 for the interface eth0. For example, to add a persistent static route that sends all network traffic for any host in the 10.100.212.0 subnet (that uses the subnet mask 255.255.252.0) to the gateway 10.100.219.102, type:
|
Notes | Pri = 192.168.1.84 DefGW = 192.168.1.61 remote net = 10.53.69.0 remote net GW = 192.168.1.92 all net masks = 255.255.255.0 sudo bash -c "echo '10.53.69.0 192.168.1.92 255.255.255.0 eth0' >> /etc/sysconfig/network/ifroute-eth0" sudo bash -c "echo '10.53.69.0 192.168.1.92 255.255.255.0 eth0 table Teth0' >> /etc/sysconfig/network/ifroute-eth0 table" sudo service network restart Errors received: "RTNETLINK answers: Invalid argument" is received if the bit in the IP address is not zero where the network mask is zero. Example: NETMASK=255.255.255.0 with DESTINATION ADDRESS=172.202.238.108 The "108" in the address needs to be replaced with 0 or replace the network mask with 255.255.255.255. |
Legacy Article ID | a67015 |