• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 939
  • Last Modified:

Watchguard site to site tunnel Cable modem

Hi Experts,

I am trying to setup a site to site vpn tunnel.

1)2 Identical XTM50 Watchguard firewalls.
3) Internet Lines - Comcast with SMC modems.

I can not bring up the tunnel and I have triple checked the setting on each end it they are identical.

It appeas that the connection is being rejected at the remote site. I am not sure if it is the comcast modems not allwoing the connection and I have contacted them and they do not block IPSec traffic. I do see an option in the modem settings to build site to site, but do not want modems manging this I perfer the watchguards. As any one ever had an issue while using comcast modems?

2 Solutions
Without having the details, it is hard to say.

First thing is to check the logs on each side to see what is being recorded for the VPN establishment.

Does each watchguard get a public IP?

To avoiding missing the obvious.
Site 1: WAN IP
Site 1: Local LAN1

Site 2: WAN IP
Site 2: Local LAN2

Local LAN1 and Local LAN2 must be unique.

The below is a guide with snapshots

Use the following as a guide.

I.e. you could post your data with masquerading the first three octets of the public IPs as well as the passphrase.

when you say >> connection is being rejected at the remote site
are there any logs to substantiate that remote site is indeed rejecting the packets.

As already mentioned; please post sanitized logs so we know what exactly is happening.

Have a look at link below to ensure that the settings are correct:

Logs can be seen in traffic monitor:

Please check and update.

Thank you.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now