Read the Firebox Route Tables
In the Firebox System Manager Status Report tab or in the Routes System Status Page in Fireware Web UI you can see the internal route tables for your Firebox.
The features available in WatchGuard System Manager (WSM) can be different for different versions of Fireware. If your Firebox does not run Fireware OS v11.10.x or higher, the content in this Help topic might not apply to your Firebox.
For instructions to complete the procedures in this topic for a Firebox that runs an older version of Fireware, see:
Read the Route Tables in WatchGuard System Manager v11.9.x Help
See the Firebox Route Tables
You can see the Firebox route tables in Firebox System Manager or Fireware Web UI.
- Start Firebox System Manager.
- Select the Status Report tab.
- Scroll down until you see the Routes section.
This section shows the internal route table on your Firebox.
In the Status Report, the routes appear in separate tables within the routes section.
- Connect to Fireware Web UI.
- Select System Status > Routes.
This page shows the internal route table on your Firebox.
Routes in the Firebox internal route tables include:
- Routes the Firebox learns from dynamic routing processes running on the device (RIP, OSPF, and BGP)
- Permanent (static) network routes or host routes you add, as long as there is a route to the specified gateway
- Routes the Firebox automatically creates based on the network configuration information
If your Firebox detects that an external interface is down, it removes any static or dynamic routes that use that interface. This can happen if the hosts specified in the multi-WAN Link Monitor settings become unresponsive or if the physical Ethernet link is down.
Route Table Information
In Fireware v11.0 and higher, the Status Report has two route tables:
Shows the first 100 IPv4 routes, including IPv4 static, dynamic, connected, and BOVPN virtual interface routes
Shows the first 100 IPv6 routes, including IPv6 static, dynamic, connected, and BOVPN virtual interface routes
The information that appears for each route includes:
- Destination — the destination IP address for the route
- Gateway — for an IPv4 route, the IP address of the gateway the route uses.
- Genmask — for an IPv4 route, the subnet mask for the destination IP address
- Next Hop — for an IPv6 route, the IP address of the next hop for the route
- Metric — the routing metric, or cost for the route. A lower number indicates a lower cost, and higher route priority
- Interface —the interface to which packets for this route will be sent; for example eth0 for interface 0
- Flags — route flags that indicate characteristics of the route
Some of the more common flags include:
- U indicates a route that is up
- H indicates a route to a host
- G indicates an IPv4 route that uses an external gateway or an IPv6 route that uses the next hop
- D indicates a dynamic route
In the Status Report, each route table can show a maximum of 100 routes. If there are more than 100 routes, you can use Fireware Web UI or CLI to see a filtered list of routes.