I am currently experiencing an annoying VPN issue
I have a WatchGuard M300 cluster based in datacentre 2 which has an existing site to site VPN to datacentre 1
The same customer has a satellite office with a Watchguard xtm33 that has a site to site VPN to datacentre 1. The satellite office is double NAT'ing, with an external IP in a 1 to 1 NAT direct through to a private IP range that is the external interface on this Watchguard.
datacentre 1 will be turned off soon so I need to connect the satellite office to datacentre 2, however when I set it up I get a timeout error on the Datacentre 2 side (it's like it cannot even see the external interface nevermind start negotiating) and the satellite side doesn't even attempt to start the VPN. I have checked all of the settings, all traffic is definitely being passed through the satellite offices provider interface and other services are working. As there is a VPN in place and working on both sides I cannot understand why the issues exists, but seems buggy. The firmware on the satellite WatchGuard is old, its the only thing I can think to change. Or its the 1 to 1 NAT, never had an issue before but its a question mark.