How to setup Natting on VPN tunnel with Watchguard fireware 9.0

Posted on 2007-10-03
Medium Priority
Last Modified: 2013-11-16
How to setup Natting on VPN tunnel with Watchguard fireware 9.0.  I have an 1250e wg appliance that I am setting up a branch VPN connection to a cisco vpn concentrator.  The branch office is on the same subnet so I would like to setup a nat statement on the firebox that nats my 192.168.1.x traffic to 192.168.32.x through the tunnel.

Any ideas how to do that on this device.

Question by:mkurtzhals
1 Comment
LVL 32

Accepted Solution

dpk_wal earned 2000 total points
ID: 20011131
To create 1-1 NAT over IPSec VPN tunnel; in Policy Manager go to VPN->Branch Office Tunnels; click Add if not already added; specify name and gateway [create one if not already added].
Under Addresses tab; if no address defined, click Add; under local specify 192.168.1.x/y [where y is the relevant subnet mask and x being the subnet; for eg.,]; under Remote specify 192.168.1.x/y;
leave direction as : Local <===> Remote
Check 1:1 NAT checkbox under NAT Settings; specify 192.168.32.x/y; click OK all the way back.

Please note 1-1 NAT would be 1-1 IP mapping between 192.168.1.x till x+n to 192.168.32.x till x+n; you cannot have all the traffic in 192.168.1.x subnet to be natted to one single IP 192.168.32.a

The remote site would see the traffic originating from 192.168.32.x subnet.

Please implement and update.

Thank you.

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article will show how Aten was able to supply easy management and control for Artear's video walls and wide range display configurations of their newsroom.
Will you be ready when the clock on GDPR compliance runs out? Is GDPR even something you need to worry about? Find out more about the upcoming regulation changes and download our comprehensive GDPR checklist today !
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question