How do you create a Mulitwan link with Watchguard x750

Hi,

We have two internet links fed into our building and I am tryint to setup the Multiwan portion. I have our main internet link which feeds everything coming in and we want to use the other internet link to feed specific routing going out. Under Mulitwan I have selected to use the 'Routing Table' option. Other than that I'm a little lost as to how to enable the other internet link. Thanks for the help,
cireduranAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

dpk_walCommented:
As you have configured Routing Table otpion you would be using ECMP [equal cost multipath routing]; if you wish to have round robin or failover; please likewise.

As GUI forces you to have two interfaces configured as External; so am assuming that part is already configured.

Please let know if you wish to configure explicit routing [use policy based routing] or any other thing.

Thank you.
0
cireduranAuthor Commented:
Hi thank you for the response. I am trying to setup a policy based route that will be used for our site to site vpns. I don't know however to tell if this other wan link should be another trusted interface, optional, etc.
0
dpk_walCommented:
So, if I understand correctly you wish that whenever VPN traffic leaves your box it should always go out as WAN-IP-1 [for instance].
First when you configure VPN tunnel select the specific interface in the gateway configuration [from drop down you can select different interfaces].

As you are running ver 11; if you have fireware XTM Pro, you can further configure policy based routing on the ANY VPN .in/.out policies created by default. Edit the policy, click "Use policy based routing" checkbox at the bottom of "Policy" tab; select the specific interface; click OK; save to firebox.

With this the remote client would use WAN-IP-1 to establish VPN tunnel; also when the traffic goes out it would always use the said IP.

Thank you.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
cireduranAuthor Commented:
Thank you for the response. Yes we will use policy based routing. Is this only done through the BOVPN wizard? Where can I find the any VPN policies? Thanks for your help dpk_wal.
0
dpk_walCommented:
What I meant by any VPN policies is, you would have two policies created for your VPN, something like, tunnelname.in and .out; in these policies, edit the policy and configure policy based routing.

Thank you.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Software Firewalls

From novice to tech pro — start learning today.