Options
Intial interface configuration
Hi, I'm new to WatchGuard and struggling a little.
I have a Firebox T40 plugged into my existing network via the WAN interface which is on a local IP (10.128.10.26), which I can connect to on the LAN and via the Cloud portal.
In interface3 I have a another branded L3 switch. If I configure i3 to have the IP address of 10.0.1.1 I can see the L3 switch on 10.0.1.2.
If I change this interfaces IP and setup a DHCP server, the L3 switch does not pick a new IP address, therefore I am thinking 10.0.1.2 is statically assigned.
I either need a way for the switch to pick an IP in the 10.128.10.0/24 range or find a way to connect to it on 10.0.1.2.
Any ideas? Any suggestions would be gratefully received.
0
Sign In to comment.
Comments
In Mixed routing mode, you can't have the subnet on external also be on an internal firewall interface, so you can't have 10.128.10.x on an intenral firewall interface .
To connect to your switch from External (10.128.10.x), you need to add an incoming policy to allow this access.
Presumably this would be HTTPS packet filter.
You need also set up a SNAT.
If you are using the Web UI, you need to log in using the admin userid & password.
Select Firewall -> Firewall SNAT
Add, enter a name for this
Add
select the firewall external interface IP addr, type = Internal IP addr, & enter the private IP addr (10.0.1.2). You do not need to select either check box.
OK, SAVE
Select Firewall -> Firewall Policies
Add Policy
Select Packet Filter, then scroll down and select HTTPS
select ADD Policy
From: - remove Any-trusted, Add Any-external, OK
To: - remove Any-external, Add - select Member Type = Static NAT, select the SNAT name that you created, OK
Save