Solved

Create inbound rule for Watchguard Firebox Edge 10e

Posted on 2011-02-18
7
1,367 Views
Last Modified: 2013-11-16
Anyway, we had a problem with our Watchguard Edge 10e so where we had to reset the Firebox, I then put the latest firmware on the thing and boy what a mistake that was. The interface has been totally changed and I've no idea how to create an inbound tunell.

You would have thought it would just be a case of Forward anything on port xxx to address xxx but no. I assume there is something in another area I'm supposed to be doing but I've no idea at all.

So if anyone can do a simple howto on how to create a rule to forward trafiic from the external interface to an internal address then you'll get all the points and my eternal thanks.

0
Comment
Question by:DBrookfield
  • 4
  • 2
7 Comments
 
LVL 7

Author Comment

by:DBrookfield
ID: 34925686
Oh yes I forgot I should say it's got firmware  11.3.2 on it.
0
 
LVL 6

Accepted Solution

by:
Jon Snyderman earned 500 total points
ID: 34935328
So its really not all that different.  Some different terminalogy but it does REALLY change until you get to 11.4.

1) Go to Firewall Policies.
2) Click to ADD a new policy
3) Select or create the type of policy (HTTP, SMT, etc)
4) Remove the Any-Trusted from the FROM box and add Any-External
5) Remove the Any-External from the TO box and click ADD.
6) for Member Type, select STATIC NAT
7) Select the External interface in the External IP address field
8) Enter the internal IP of the host that you want to forward the requests to.
9) Cliick OK and the click Save to save the policy.

Let me know if you need pics or more details.

~Jon
0
 
LVL 7

Author Comment

by:DBrookfield
ID: 34936873
Ahh mate, nice one, the last Firebox OS I used was 10.2 I think,

I suspect I know where I was going wrong now, at point 5 I was removing the any and making that a host IP i.e giving it the IP address I wanted it to go to (Seemed logical to do that) can't remember seeing a static NAT option but there again I wasn't looking for it. I'm not back on site until Tuesday (Had to get a sonicwall running in the mean time) so will update you then.

Many thanks so far.
0
New My Cloud Pro Series - organize everything!

With space to keep virtually everything, the My Cloud Pro Series offers your team the network storage to edit, save and share production files from anywhere with an internet connection. Compatible with both Mac and PC, you're able to protect your content regardless of OS.

 
LVL 6

Expert Comment

by:Jon Snyderman
ID: 34937407
Well, you definately want to fix THAT then :)
0
 
LVL 7

Author Comment

by:DBrookfield
ID: 34964167
Righto still not had a chance to get to the site yet. I'm hopeing tomorrow. Thanks for the patience
0
 
LVL 7

Author Closing Comment

by:DBrookfield
ID: 34978265
Many thanks for this, very helpful, I hadn't seen Static NAT at the bottom. of the list.
0

Featured Post

Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

Join & Write a Comment

Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
I recently attended Cisco Live! in Las Vegas, a conference that boasted over 28,000 techies in attendance, and a week of hands-on learning hosted by a solid partner with which Concerto goes to market.  Every year, Cisco displays cutting-edge technol…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now