Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Watchguard x750e Configuration Issues

Posted on 2008-10-06
2
Medium Priority
?
645 Views
Last Modified: 2013-11-16
Hi,

We've inhireted a network which uses the IP range 137.121.82.0 /24, we're trying to configure a new x750e using this range as the Trusted network. On the External, we have a /29 subnet of IPs to use.

The current configuration is as follows :

Eth 1 Trusted Interface : 137.121.82.230 /24
Eth 0 External Interface : This is using the PPPOE client and obtaining details via DHCP.

The problem is that traffic is not being routed externally. When configured as follows :

Eth 1 Trusted Interface : 192.168.2.1 /24
Eth 0 External Interface as above, PPPOE with IP via DHCP, traffic is being routed fine.

What could be the issue here?
0
Comment
Question by:SBSNetworks
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 32

Accepted Solution

by:
dpk_wal earned 2000 total points
ID: 22656668
By default the dynamic NAT is only allowed from the private IP ranges, viz.:
10.0.0.0/8; 172.16.0.0/12; 192.168.0.0/16

As you have 137.121.82.0 /24 on trusted; you need to go to Policy Manager; Network->NAT; and add 137.121.82.0 /24 to be allowed as:
In Policy Manager; go to Network->NAT; click Dynamic NAT tab; click Add; add entry as:
From: 137.121.82.0 /24; to Any-External

Move up if you wish [doesn't matter]; save settings to firebox. I would like to point out to you a potential problem with this configuration, if on internet there exists some server(s) which is/are running on same IP subnet 137.121.82.0 /24; then you would not be able to access that server when behind firebox.

Please implement and update.

Thank you.
0
 

Author Closing Comment

by:SBSNetworks
ID: 31503514
Many thanks for this, this was exactly what solved the issue, you've been a great help.
0

Featured Post

Cyber Threats to Small Businesses (Part 2)

The evolving cybersecurity landscape presents SMBs with a host of new threats to their clients, their data, and their bottom line. In part 2 of this blog series, learn three quick processes Webroot’s CISO, Gary Hayslip, recommends to help small businesses beat modern threats.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
Have you created a query with information for a calendar? ... and then, abra-cadabra, the calendar is done?! I am going to show you how to make that happen. Visualize your data!  ... really see it To use the code to create a calendar from a q…
Suggested Courses

670 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question