[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now


How To public a secure web site with watchguard XTM v.1.4

Posted on 2011-10-26
Medium Priority
Last Modified: 2013-11-16
Hello, I need to know what is the procedure to public https sites with Watchguard xtm v.11.4
Question by:olimpia_hn
  • 2
LVL 14

Assisted Solution

setasoujiro earned 2000 total points
ID: 37036101
ormally you configure a rule called https proxy.
from external to NAT or to ALIAS

then modify the proxy's properties to suite your needs

Author Comment

ID: 37038488
good, but where can i configure the certificates?, because I need to public several web sites in the same web server but each web site will have its own certificate.

For example, I have configured 2 secondary adresses to the external nic of the firewall, the external users will connect to one of the secondary address using certificate1.domain.com which points to the internal web server using SNAT (server:50100), and certificate2.domain.com pointing to the same web server but different SNAT (server:50200).

Muy question is how to configure this scenario.
LVL 14

Accepted Solution

setasoujiro earned 2000 total points
ID: 37041014
You don't need to configure the certificates in the watchguard proxy, the watchguard will do nothing more then NAT the traffic to the said server.
You need to setup your certs on the servers themselves
and of course check the traffic for susicious actions...
LVL 71

Expert Comment

ID: 37218450
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.

Featured Post

A Cyber Security RX to Protect Your Organization

Join us on December 13th for a webinar to learn how medical providers can defend against malware with a cyber security "Rx" that supports a healthy technology adoption plan for every healthcare organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
Please read the paragraph below before following the instructions in the video — there are important caveats in the paragraph that I did not mention in the video. If your PaperPort 12 or PaperPort 14 is failing to start, or crashing, or hanging, …
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses
Course of the Month18 days, 18 hours left to enroll

834 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question