firebox edge x15 configuration issues

Posted on 2006-04-02
Last Modified: 2008-01-16
We have just installed a firebox egde x15 on our network.  We want to use the muvpn feature.

we are using a ZOOM x3 ADSL modem.

Our problem is we cannot get the external static IP assigned by our ISP to configured onto to the external interface of the firebox.

We have put the router in bridged mode with DHCP on but all that happens is the external interface of the edge recieves a DHCP IP of, and all traffice bewteen the watchguard and the router is blocked or stopped.  We have tried manual configuration but have a problem with entry for external gateway. Our ISP is demon internet and there gateway IP is on a differnet subnet to our static IP, which is an invalid configuration according to our firebox. ergo we are stuck. Has anyone got one of these things working with demon internet ADSL?

It works as a firewall only with following config:

trusted interface
external interface
Gateway (Zoom router)

The external interface is then placed in the DMZ, which allows us the access it from the internet using the static IP, but the MUVPN doesnt  work.

Any help would be much appreciated.
Question by:nelliedean1
    LVL 10

    Accepted Solution

    You need to get your ISP to provide you with a static PUBLIC IP for your external interface.  You cannot use DHCP on a firebox and use VPN functionality.  
    Here is what I usually do.  Request a block of 5 ip addresses from the ISP.
    The router uses one in bridged mode and then the firewall uses the next one in line.  You really would only need to add additional ones as needed.
    Short version:  You need your router to pass all public traffic without dhcp.   Your firewall will handle all NAT translations...IE public to private IP addresses.  
    As far as MUVPN, crapolla!   I use PPTP VPN instead.  I've installed tons of Watchguard firewalls and this is really a snap.
    They have their querks but you just learn them as you go.

    I hope I have effectively helped you with your question.  If not, please clarify and I would be more than happy to help further.


    Author Comment

    I am happy with the comment, but not happy with my watchguard support and documentation, as they could have made this more obvious to the end user setting one of these up for the first time.

    Many thanks

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Looking for New Ways to Advertise?

    Engage with tech pros in our community with native advertising, as a Vendor Expert, and more.

    This is the first one of a series of articles I’ll be writing to address technical issues that are always referred to as network problems. The network boundaries have changed, therefore having an understanding of how each piece in the network  puzzl…
    This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…
    In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…

    779 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    14 Experts available now in Live!

    Get 1:1 Help Now