Create inbound rule for Watchguard Firebox Edge 10e

Anyway, we had a problem with our Watchguard Edge 10e so where we had to reset the Firebox, I then put the latest firmware on the thing and boy what a mistake that was. The interface has been totally changed and I've no idea how to create an inbound tunell.

You would have thought it would just be a case of Forward anything on port xxx to address xxx but no. I assume there is something in another area I'm supposed to be doing but I've no idea at all.

So if anyone can do a simple howto on how to create a rule to forward trafiic from the external interface to an internal address then you'll get all the points and my eternal thanks.

LVL 7
DBrookfieldAsked:
Who is Participating?
 
Jon SnydermanConnect With a Mentor Commented:
So its really not all that different.  Some different terminalogy but it does REALLY change until you get to 11.4.

1) Go to Firewall Policies.
2) Click to ADD a new policy
3) Select or create the type of policy (HTTP, SMT, etc)
4) Remove the Any-Trusted from the FROM box and add Any-External
5) Remove the Any-External from the TO box and click ADD.
6) for Member Type, select STATIC NAT
7) Select the External interface in the External IP address field
8) Enter the internal IP of the host that you want to forward the requests to.
9) Cliick OK and the click Save to save the policy.

Let me know if you need pics or more details.

~Jon
0
 
DBrookfieldAuthor Commented:
Oh yes I forgot I should say it's got firmware  11.3.2 on it.
0
 
DBrookfieldAuthor Commented:
Ahh mate, nice one, the last Firebox OS I used was 10.2 I think,

I suspect I know where I was going wrong now, at point 5 I was removing the any and making that a host IP i.e giving it the IP address I wanted it to go to (Seemed logical to do that) can't remember seeing a static NAT option but there again I wasn't looking for it. I'm not back on site until Tuesday (Had to get a sonicwall running in the mean time) so will update you then.

Many thanks so far.
0
Simple Misconfiguration =Network Vulnerability

In this technical webinar, AlgoSec will present several examples of common misconfigurations; including a basic device change, business application connectivity changes, and data center migrations. Learn best practices to protect your business from attack.

 
Jon SnydermanCommented:
Well, you definately want to fix THAT then :)
0
 
DBrookfieldAuthor Commented:
Righto still not had a chance to get to the site yet. I'm hopeing tomorrow. Thanks for the patience
0
 
DBrookfieldAuthor Commented:
Many thanks for this, very helpful, I hadn't seen Static NAT at the bottom. of the list.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.