How to configure watchguard so two sites communicate with vpn.
Posted on 2011-09-15
My company has 2 sites.We try to establish a permanent connection between two sites.
One site runs in at subnet 172.27.1.0/24
and the other site at subnet 172.27.0.0/24
The first site communicates with outside wolrd with a router (ip 172.27.1.1).
The other site has a watchguard firewall (trusted interface 172.27.0.2) and one of its external interfaces has a router(192.168.0.1 255.255.255.0 getaway 192.168.0.254)
which has a permanent ssl vpn connection with the router on the other site.
The ssl vpn connection between 2 routers is established in subnet 10.27.1.0/24.
Is it possible the two subnets to communicate with this architecture?
I think my problem is to route all traffic through watchguard and I don't know how to do that.
Should I use NAT or something else in policies?
My watchguard model is XTM22 (firmware 11.4.2).
At the end I want the domain controllers in each site to ping each other with no problem.