WatchGuard XTM510 port forwarding

We have a WatchGuard XTM510 firewall and it is behind a Time Warner Telecom AdTran unit which provides our VOIP services.  According to TW they say there is no nat enabled so any requests coming through goes straight to the WatchGuard.  We are working with WatchGuard on this but they are slow to respond as they designate a single tech to your case all of the time, that's good and bad.  But in any case, we've followed their instructions to a T and the port forwarding is just not working.

On the external interface is a private IP because of the AdTran being in front of the WatchGuard.

So AdTran has 192.168.2.1
WatchGuard is 192.168.3.1

We setup the policy using policy manager and it looks like any-external (from) any-external --> 192.168.3.x which is the security camera setup with ports of 8001, 8081 and 8554 open.

Using an outside computer attempting to connect to their static public IP address and using those ports do not work.  There is also a few other port forwards for SSH access but that too does not work.

I look at the static routes page and I can see static routes from 192.168.2.1 which is the gateway and the route to is 192.168.4.0/24 but I don't see anything for 192.168.3.0/24 and was wondering if that's why the port forwarding is not working.

Another thing is another team member swapped out the WatchGuard for a basic Linksys router and was able to port forward successfully.
NerdfaceKillahAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

BrianCommented:
Do you have the ports forwarded in the AdTran from the Static Public IP to the IP address of the External port on the WatchGuard? Test by putting a laptop on the LAN side of the AdTran and try going to the assigned IP External port of the WatchGuard.

It sounds like your policies and routing are setup correctly. Possible to show some screen shots of the network setup and policies list pages?
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Hardware Firewalls

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.