cant reach client lan interface

Hi, i am having an issue to reach my client lan interface.
Think its just a little routing/gateway problem, but im not getting it.

Interface is configured as bridge with IP 10.236.56.253/24
VPN SSL is configured on this bridge, the clients get an IP and can reach everything in my network (mgmt lan, client lan)
but i cannot ping the interface or any clients behind it.

the default gateway is not on the watchguard, its on a WAN router behind it, if i check the system status routes, it shows:
10.236.56.0/24 Client LAN Bridge 0.0.0.0 U 0

but 0.0.0.0 is showing my internetprovider gateway and not my client lan gateway (10.236.56.1)
0.0.0.0/0 InternetproviderX 185.x.x.x UG 5

is there a way to work around it? or change the default gateway for that client lan?

Comments

  • You could change from Bridge VPN Traffic on your SSL VPN setup to Routed VPN Traffic. This should give you a default gateway on the firewall, not on the WAN router.

  • Thanks for your answer. Have tried that, it did not change the default routes and i was still not able to ping my interface. Any other idea? I also would like to keep my bridge setup, as everything else is working fine for my vpn clients.

  • Do you have an external interface defined in your config?
    That is the only way that I know of to be able to get a default gateway which is not a firewall interface IP addr.

  • I do, that one is our internet provider where the 0.0.0.0 is pointing to.

Sign In to comment.