Use an Interface for Public IP Address Passthrough
Hi
I'm putting in a T40 to replace a DrayTek router at a clients site. They have an FTTP Internet circuit with a block of 8 static IP's which we're connecting to with PPPoE to the NTU. The client has a tenant in their office that share the connection and they need to connect their Sonicwall Firewall to our Gateway to use one of the public IP addresses with no NAT.
On the DrayTek we just use the IP Routed Subnet feature to dedicated one of the LAN interfaces for a non NAT connection. Is the same thing possible on Fireware please as I can't seem to figure it out? I think I probably need a seperate router between the NTU and the Firebox/3rd Party Sonicwall?
Thanks
Andy.
0
Sign In to comment.
Comments
The only way that I can think of to do this with just the WG firewall is to use drop-in mode on the firewall.
That way you can assign a public IP addr on or more devices connected to an internal interface, and thus not NAT that traffic going in/out.
There are a number of limitations when using drop-in mode compared to using mixed routing mode.
Drop-In Mode
https://www.watchguard.com/help/docs/help-center/en-US/Content/en-US/Fireware/networksetup/net_config_dropin_about_c.html
Thanks Bruce and I'd not thought of that. I think there's too many limations for this application though so I'll just get a router to sit between the WG and the Internet to fulful this function. Good to know I'm not missing anything anyway.