Solved

Watchguard firewall setup XTM25

Posted on 2013-01-24
2
706 Views
Last Modified: 2013-02-01
Taking a different approach here. I was recently assigned a bank of 6 static IP addresses in which I want to 1) set up an email server on which has squirrelmail, ispconfig, postfix, etc. 2) set up a static IP for each of my webservers. I need multiple services for each server, such as email server which has https, http, smtp, pop. SSL ports (465/995) for POP and SMTP, and for the webservers http, and SSH. On the static IP's I have 216.xxx.xxx.160 /29 and use .161 for the gateway, and .162 for the WAN interface, leaving 163-166. I can ping out using this setup, but cannot get in. I assumed I could just do a 1-to-1 NAT and not have any issues, but I cannot access anything when trying from an external network. Any ideals? What am I leaving out?
0
Comment
Question by:ITmanage
2 Comments
 
LVL 17

Accepted Solution

by:
TimotiSt earned 500 total points
ID: 38815264
You could use proxy-ARP on the WAN interface, so it'll reply for the public IPs.
Not sure how exactly to set that up on Watchguard, though...
See page 55:
http://www.watchguard.com/help/docs/v741WFSConfigurationGuide.pdf


Tamas
0
 

Author Comment

by:ITmanage
ID: 38815359
So far all I'm seeing is that I will have to change it to "drop-in" mode to use proxy-arp
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
SD - WAN 2 41
Ways to assess https/ssl websites 3 83
OUtlook missing email alert 9 41
Adding switches as opposed to running cables 4 87
Envision that you are chipping away at another e-business site with a team of pundit developers and designers. Everything seems, by all accounts, to be going easily.
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

947 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now