VPN and Firebox X700

Posted on 2005-05-05
Last Modified: 2013-11-16
I have a Cisco 800 series router coming into my office. I recently purchased a Firebox X700 to setup here for firewall protection. Our subnet mask is on all the PCs and our DHCP range is from I'm currently setting up the X700 and its asking for a Trusted IP address, along with a secondary IP address. I'm assuming that in the Trusted IP, i'm suppose to put a static address within the range of our network. I'm not sure what to put in the secondary IP. My second question is, am i going to have to change my configuration in my Cisco in order for me to have a VPN. I'm assuming I will so i can open up certain ports or IPs to come through, however I have no cisco experience, classes don't start until September lol.
Question by:selhs
    LVL 1

    Expert Comment

    Well your trusted IP on the Firebox would be the server that is connected to eth1.  This is usually where I also set up the Firebox management console.  You should make your route from the Cisco router to eth0 on the Firebox.  The secondary trusted zone is for multiple subnets on your network, but from what you are saying in the question you don't have any, so disregard.  No you should not have to change anything, just add a route.  You need to assign your Firebox eth0 an IP on the same network as your router.  These are typically Public Routable IP's.  You will then only need to go from e0 of the router to eth0 on the Firebox, and viola!

    Author Comment

    Here's what i get when i put in the trusted interface.

    Trusted Interface: (IP of our domain server)

    Error comes up The Trusted interface address is on a network which overlatps the external interface addresses's network. Please enter an IP address from another network.

    Is there some sort of default IP address i can enter in there to bypass this. And what should I enter for the Optional IP address since i'll probably get the same error.

    Author Comment

    Let me give you all the specifics and see what you think, Heres our system info
    Domain controller
    DHCP is
    public IP:

    I choose the static option to setup the firewall, and i set the firebox IP address to one I have open on the network,, default gateway i set to Click next works fine. Under the trusted interface, i tried, got the error "The trusted interface address is on a network which overlaps with the external interface address's network, please enter an IP address from another network. So i tried to see if it would go through and it didn't. I also tried and under the optional IP address which requires you to put on in, i tried the address and still failed.

    The software version on the firebox is 7.2 also. I can't htink of any other information to give you other then our subnet of
    LVL 1

    Accepted Solution

    Ok well I see why you are getting that error.  As I stated above you will need to use your public space address for this.  You are going to need another IP address in the network.  Your ISP should be able to give you a specific block.  For a business account they should have given you at least 4 IP's for every T1.  I can write the config file for you, by just copying mine, but you will need more address space.

    Author Comment

    We acually have a DSL line in here, and they claim I only have one IP. This might be easier to just talk via email. Here is my email address.

    Featured Post

    How to run any project with ease

    Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
    - Combine task lists, docs, spreadsheets, and chat in one
    - View and edit from mobile/offline
    - Cut down on emails

    Join & Write a Comment

    I found an issue or “bug” in the SonicOS platform (the firmware controlling SonicWALL security appliances) that has to do with renaming Default Service Objects, which then causes a portion of the system to become uncontrollable and unstable. BACK…
    Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
    Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

    745 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    15 Experts available now in Live!

    Get 1:1 Help Now