Link to home
Create AccountLog in
Avatar of cegedimit
cegedimit

asked on

1:1 NAT over BOVPN Tunnel on Watchguard Firewalls

I have two Watchguard XTM510 firewalls, one at each branch and I'm trying to setup a tunnel between the two sites so a server at site A can access a server at site B.

The destination server at site B has an IP address which is already in use at site A so I need to use a different address to access it and NAT it back to its real address within the tunnel.

I can get the tunnel working without the NAT enabled but when I enable the 1:1 NAT on the tunnel route at site B the tunnel then stops working, the firewall at site A is receiving an error saying "No Proposal Chosen" from site B's firewall.

Site A server:  10.133.0.2/24
Site B server:  10.0.0.2/24  (NAT address being used is 10.130.0.2/24)

Any ideas please ?
ASKER CERTIFIED SOLUTION
Avatar of dpk_wal
dpk_wal
Flag of India image

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account