How to access an Optional network from a Watchguard to a Netscreen
Posted on 2009-05-11
Hi, I have the following scenario:
Watchguard Firebox Edge X55e
May 19 2008
This is the main Router/Firewall. It is configured with the the Subnet of 10.0.1.0/24. It handles are T1 and all the LAN access. Now attached to the Optional port on this router is our VoIP system, which is just a private network from our location in Burbank to our location in Mexico. The devices on that network use the IP's of 192.168.0.100, 101, 200, 201. There was no device on that network that did any routing whatsoever. We have a RAD RIC E1/T1 Converter one on each end of the Point-toPoint T1. There is Also a Quintum Tenor DX boxes on each end. Now what I want to do is very simple. I just want to be able to Telnet from anywhere to the Quintum box located at 192.168.0.101.
Now I worked with Watchguard and they told me it will not work since the 192.168.0.0 side does not have a Router. The Watchguard is able to see the devices in the ARP table but not ping them. So I a hooked up our old Juniper Networks NS5GT, and basically dumbed it down. I configured it with an IP of 192.168.0.110 and plugged a switch up to it and then plugged in the VoIP devices to it. I also added routes to the 10.0.1.0 network.
So right now I have a rule on the Watchguard to allow port 23 incoming to Optional network IP 192.168.0.110. Right now the only thing I can ping from the 10.0.1.0 network is the Netscreen box located at 192.168.0.110
I'm quite sure I'm doing something wrong, maybe even trying something that cannot be done, I'm not to sure. My only other thought why it doesn't work is because I need to configure the "WAN" port on the netscreen with the Private IP side....not sure...