Solved

Watchguard firewall setup XTM25

Posted on 2013-01-24
2
704 Views
Last Modified: 2013-02-01
Taking a different approach here. I was recently assigned a bank of 6 static IP addresses in which I want to 1) set up an email server on which has squirrelmail, ispconfig, postfix, etc. 2) set up a static IP for each of my webservers. I need multiple services for each server, such as email server which has https, http, smtp, pop. SSL ports (465/995) for POP and SMTP, and for the webservers http, and SSH. On the static IP's I have 216.xxx.xxx.160 /29 and use .161 for the gateway, and .162 for the WAN interface, leaving 163-166. I can ping out using this setup, but cannot get in. I assumed I could just do a 1-to-1 NAT and not have any issues, but I cannot access anything when trying from an external network. Any ideals? What am I leaving out?
0
Comment
Question by:ITmanage
2 Comments
 
LVL 17

Accepted Solution

by:
TimotiSt earned 500 total points
Comment Utility
You could use proxy-ARP on the WAN interface, so it'll reply for the public IPs.
Not sure how exactly to set that up on Watchguard, though...
See page 55:
http://www.watchguard.com/help/docs/v741WFSConfigurationGuide.pdf


Tamas
0
 

Author Comment

by:ITmanage
Comment Utility
So far all I'm seeing is that I will have to change it to "drop-in" mode to use proxy-arp
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

This subject  of securing wireless devices conjures up visions of your PC or mobile phone connecting to the Internet through some hotspot at Starbucks. But it is so much more than that. Let’s look at the facts: devices#sthash.eoFY7dic.
Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now