Hi I have a reachability issue with a server published via SNAT. Let me describe the scenario. The server is located at site A, while it is published through a public IP at site B. Site A and site B are connected through a BOVPN, and within the tunnel there is an "any IP" <--> server private IP route. The policy publishing…
Hello from munich, has anybody an idea of what could cause the following behaviour: When doing a Nessus-Scan from VLAN A to VLAN B after some time (Whether existing or non-existent IP addresses are scanned, regardless of the throttling applied) the whole TCP/UDP communication in ALL VLANs (also those not affected by the…
Apologies if this is already a well known thing, but I failed to find info about it when I was researching it. I was looking how a firebox could inject "classic" IPSec routes into OSPF, so that the rest of our network could use the routes, rather than having to declare them as static routes on internal routers behind the…
Hello everyone, Sorry if this topic has already been discussed, but I haven't been able to find the answer to my question. In an infrastructure with Active Directory (DNS) servers in the cloud connected via IPsec VPN to WatchGuard appliances at branch offices where there are only Windows PCs, what are WatchGuard engineers’…
Hello, I setup a Pantech UML295 USB modem on WatchGuard Firebox T15 for Internet redundancy many years ago, and I am trying to troubleshoot it now remotely, because the users were not able to connect to Internet when the main Internet connection went down. So, I use Network tab of Diagnostics page in WebUI to ping -I eth0…
I recently discovered I can do a traceroute to say 192.168.100.101, and the traffic is allowed out the external interface via the Outgoing policy. The traffic made it a few hops and was dropped by my ISP. I was surprised that BOGON addresses aren't just dropped at the firebox. Is there any easy way to block BOGON address…
Hello, can the loopback ip by part of 192.168.114.0 or 192.168.113.0 networks these are used for muvpn ikev2 and sslvpn. background i have a firebox without trusted interface , it is used for bovpn and muvpn only. works as a vpn concentrator. Radius traffic is intented to go through bovpn tunnel. it is send through the…
Known Issue: Untagged VLAN fails when VLAN 1 is tagged on the same interface https://techsearch.watchguard.com/KB?type=Known Issues&SFDCID=kA1Vr000000EdzBKAS&lang=en_US This bug bit me in the butt converting from a T20w to a T125w. VLAN1 was defined as tagged on 1 interface and as untagged on a 2nd interface. On the T125W,…
Hi I'm trying to restrict traffic from my Backup server Veeam to limited internet access. I need to allow to veeam cloud vault servers. Anyone have the full ip or FQDN list ? I know it has to go through ports 80/443, are there any other ports needed? Thank you! Jean
Hello, a piece of advice, I should migrate the configuration from the current FireboxV to one of 2 M395, make it work by migrating the configuration (same trusted IP, same IPs of 2 ISPs (WAN), etc) and then create a FireCluster A/P. Now it accesses from (wsm or UI) using "192.168.0.7" which is also the gateway for LAN…
It looks like you're new here. Sign in or register to get started.