Solved

Configuring new Watchguard X550e with internal Exchange

Posted on 2009-05-14
6
794 Views
Last Modified: 2013-11-16
Hi experts - I just purchased a new Watchguard X550e for my network and want to verify my settings are correct before my first test run.  

My internal network is 10.8.0.0/13
My internal Exchange is 10.8.2.5
My external IP is 12.229.X.X

For the system manager I added the 1-to-1 NAT of NAT Base: 12.229.X.X and real base of 10.8.2.5.

In my SMTP proxy rule settings I have From: Any-External and for the To: portion I added the host IP of my external interface - should i be adding a static NAT here, or the external interface alias?  I'm just unsure of the correct settings.

Also, I set dyanmic NAT to be 10.8.0.0/13 - Any/External.  Do I need to do anything else with this or is this the only place I need to set it?

Thanks!
0
Comment
Question by:jmtoman
  • 3
  • 3
6 Comments
 
LVL 32

Accepted Solution

by:
dpk_wal earned 500 total points
ID: 24388520
The settings are fine, just that some details are need to be sure that they are correct:
1. Do you have multiple IPs or single IP address.
 If just one, then you don't need 1-1 NAT.
2. if you have multiple IP addresses and wish to do 1-1 NAT for the SMTP server, then please make sure you have not added any secondary network on external interface for the same IP.
 If you have added secondary network; please remove it.
3. In the SMTP policy in the TO box, if you have single IP then you would configure as:
    12.229.x.y->10.8.2.5
 If you have multiple IPs, then after adding 1-1 NAT, configure TO as:
    12.229.x.z [1-1 public IP]

Please implement and update.

Thank you.
0
 

Author Comment

by:jmtoman
ID: 24395242
Ok I've changed all my firewall settings and removed my 1-to-1 NAT.  I only have the one IP so, this setup should be good.  I'll be testing everything this weekend to make sure it works alright.
0
 
LVL 32

Expert Comment

by:dpk_wal
ID: 24399155
Please update about the results.

Thank you.
0
Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

 

Author Comment

by:jmtoman
ID: 24422384
Sorry for the delay in posting a reply.  I was able to successfully telnet into my mail server through the firewall and send an email, I also was able to use OWA so that works fine.  I have one more general firewall question, under Network->Configuration->WINS/DNS - are these settings relevant to anything, do i even need to set them?
0
 
LVL 32

Expert Comment

by:dpk_wal
ID: 24428740
No problem; the WINS/DNS settings are used by WG for following purpose:
1. If WG is acting as DHCP Server on the network.
2. Fore remote users [PPTP/IPSec/SSL].
3. For name resolution when using hostwatch or logviewer.

Thank you.
0
 

Author Comment

by:jmtoman
ID: 24450182
thanks for your help
0

Featured Post

Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
How do I create a Skype for business online account in power shell 5 41
Issue with Outlook Mail 13 57
exchange, 2 21
Palo Alto Networks: Truly No Hit Count? 2 25
We are happy to announce a brand new addition to our line of acclaimed email signature management products – CodeTwo Email Signatures for Office 365.
MS Outlook is a world-class email client application that is mainly used for e-communication globally.  In this article, we will discuss the basic idea about MS Outlook, its advanced features, and types of MS Outlook File formats.
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager

861 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

24 Experts available now in Live!

Get 1:1 Help Now