BOVPN Local Gateway IP address ?

Greetings All,

This is a question regarding a WatchGuard Branch Office VPN connection for a x750e.

I basically just want some one to comfirm that the Local Gateway address entered in the Gateway Endpoints setup can only be the primary IP address of the external interface ?

I'm actually trying to use a secondary IP address on the external interface, but when I do a diagnostic vpn "/ike/policy/info gatewayname" on the WatchGuard CLI the ConnectP1/localIP is the primary address of the Firewall instead of the secondary IP address I actually configured on the Local Gateway.
GYeohAsked:
Who is Participating?
 
Jon SnydermanConnect With a Mentor Commented:
It must be the physical IP of the box.  It has to do with the authentication and source IP in phase 1.   If it is that important to move the BO to the secondary, you could switch and make the second IP your physical and the current IP and secondary.    But be careful with outbound email.   You may need to setup a 1-to-1 NAT to make sure that the mail gets delivered from the right source IP since this would usually be the primary IP of the box.

~Jon
0
 
GYeohAuthor Commented:
Thanks Jon, I think I will just stick with the primary IP address then.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.