firebox edge x15 configuration issues

We have just installed a firebox egde x15 on our network.  We want to use the muvpn feature.

we are using a ZOOM x3 ADSL modem.

Our problem is we cannot get the external static IP assigned by our ISP to configured onto to the external interface of the firebox.

We have put the router in bridged mode with DHCP on but all that happens is the external interface of the edge recieves a DHCP IP of 192.168.111.1, and all traffice bewteen the watchguard and the router is blocked or stopped.  We have tried manual configuration but have a problem with entry for external gateway. Our ISP is demon internet and there gateway IP is on a differnet subnet to our static IP, which is an invalid configuration according to our firebox. ergo we are stuck. Has anyone got one of these things working with demon internet ADSL?

It works as a firewall only with following config:

trusted interface 192.168.195.254
external interface 192.168.111.2
Gateway (Zoom router) 192.168.111.1

The external interface is then placed in the DMZ, which allows us the access it from the internet using the static IP, but the MUVPN doesnt  work.

Any help would be much appreciated.
nelliedean1Asked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

mcrosslandCommented:
You need to get your ISP to provide you with a static PUBLIC IP for your external interface.  You cannot use DHCP on a firebox and use VPN functionality.  
Here is what I usually do.  Request a block of 5 ip addresses from the ISP.
The router uses one in bridged mode and then the firewall uses the next one in line.  You really would only need to add additional ones as needed.
Short version:  You need your router to pass all public traffic without dhcp.   Your firewall will handle all NAT translations...IE public to private IP addresses.  
As far as MUVPN, crapolla!   I use PPTP VPN instead.  I've installed tons of Watchguard firewalls and this is really a snap.
They have their querks but you just learn them as you go.

I hope I have effectively helped you with your question.  If not, please clarify and I would be more than happy to help further.

Mike

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
nelliedean1Author Commented:
I am happy with the comment, but not happy with my watchguard support and documentation, as they could have made this more obvious to the end user setting one of these up for the first time.

Many thanks
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Networking

From novice to tech pro — start learning today.