Watchguard Firebox and VPN Routing
Posted on 2012-03-26
I have two offices each with a Firebox firewall running XTM. Each office has its own internet service provider/internet access. I have a vpn connection between offices that goes over the internet and links the private/trusted networks.
Let us say my Firebox ip's are setup as
External Internet IP 22.214.171.124, External Internet Gateway 126.96.36.199
Private/Trusted network 192.168.111.0/24
External Internet IP 188.8.131.52, External Internet Gateway 184.108.40.206
Private/Trusted network 192.168.222.0/24
VPN 192.168.111.0/24 <==> 192.168.222.0/24
I have my VPN gateway endpoints now set at 220.127.116.11 and 18.104.22.168, the public ip of the Fireboxes
Now, I have setup a point to point private connection between the two offices using two wireless access points. The Firebox only allows External interfaces to be VPN gateway endpoints.
1) How should I setup the ip's on the wireless access points and on the Firebox so that the access points can be used as VPN gateway endpoints?
2) How can I route internet, non-vpn, traffic through the access points so they can be used as a secondary/backup internet connection if the internet service provider's line goes down at an office?
Thank you for your help