ssardella
asked on
Cisco SB107 with a PPPoA connection and Watchguard Edge X10
I had previously setup this site using a Watchguard Edge X10 firewall with a Cisco SB107 router in pure bridging (RFC1483). On the Watchguard I had then entered the details for the PPPoE authentication, and everything has been working fine.
At the time, they were using an ISP that supported both PPPoA and PPPoE.
Now they have changed ISP and the new one uses only PPPoA (with CHAP authentication).
How can I approach the problem? I have heard of half-bridging, this method should let my ISP assign the IP to my router which would have DHCP server active. The IP would then be spoofed onto the Watchguard firewall, which would have the WAN interface set in DHCP client mode. And my LAN would be set with LAN addresses (192.xxx.xxx.xxx). This should work isn't it?
However, this ISP gives 8 static IPs. Actually we are not interested in those IPs, having only one would be fine if this is the only way I can approach the problem. Instead if I wanted to use also those IP addresses what should I do??
Please help me, this is quite urgent as they are experiencing problems with the other ISP and need to switch as soon as possible!
At the time, they were using an ISP that supported both PPPoA and PPPoE.
Now they have changed ISP and the new one uses only PPPoA (with CHAP authentication).
How can I approach the problem? I have heard of half-bridging, this method should let my ISP assign the IP to my router which would have DHCP server active. The IP would then be spoofed onto the Watchguard firewall, which would have the WAN interface set in DHCP client mode. And my LAN would be set with LAN addresses (192.xxx.xxx.xxx). This should work isn't it?
However, this ISP gives 8 static IPs. Actually we are not interested in those IPs, having only one would be fine if this is the only way I can approach the problem. Instead if I wanted to use also those IP addresses what should I do??
Please help me, this is quite urgent as they are experiencing problems with the other ISP and need to switch as soon as possible!
ASKER
I know that edge doesn't support PPPoA, infact I wanted to use the half-bridging method to use the router to authenticate using PPPoA and get the IP, which then would be assigned to the firewall using DHCP. don't you think this is possible?
internet >> router (half-bridged; authenticates and gets the IP; DHCP server active) >> firewall (set to DHCP client, gets WAN IP)
according to what I've read around, this should work...what do you think?
By the way, forgot to tell in previous post. the ISP told me that I should set the router to IP Negotiation to get IP addresses.
otherwise, how should I set up what you said on the router?
internet >> router (half-bridged; authenticates and gets the IP; DHCP server active) >> firewall (set to DHCP client, gets WAN IP)
according to what I've read around, this should work...what do you think?
By the way, forgot to tell in previous post. the ISP told me that I should set the router to IP Negotiation to get IP addresses.
otherwise, how should I set up what you said on the router?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
X10 would act as if it was directly on the internet; if you are running 10.x you can configure 1-1 NAT and use these public addresses.
the setup would be like:
Internet---modem----X10--i
If you configure X10 to be on NATted IP behind the modem, then please put a static IP so you can forward all ports/protocols to the IP of X10.
Thank you.