Manualshelf

User guide

ManualsBrandsWatchguard ManualsComputer equipmentWireless Router
141142143144145146147148149150
Managed VPN: With a Firebox III or Firebox X and WatchGuard System Manager 8.0
User Guide 131
your Edge to make more VPN tunnels, as described in “Enabling
the Model Upgrade Option” on page 203.
If you connect two Microsoft Windows NT networks, they must
be in the same Microsoft Windows domain, or they must be
trusted domains. This is a Microsoft Networking problem, and
not a limit of the Firebox X Edge.
If you want to use the DNS and WINS servers from the network
on the other side of the VPN tunnel, you must know the IP
addresses of these servers.
The
Edge can give WINS and DNS IP addresses to the computers on its
trusted network if those computers get their IP addresses from the Edge
using DHCP. If you want to give the computers IP addresses of WINS and
DNS servers on the other side of the VPN, you can type those addresses
into the DHCP settings in the trusted network setup. For information on
how to configure the Edge to give DHCP addresses, see “Using DHCP on
the trusted network” on page 54.
You must know the network address of the private (trusted)
networks behind your Firebox X Edge and behind the other VPN
device (the networks that will communicate through the VPN
tunnel), and their subnet masks.
N
OTE
N
OTE
The private IP addresses of the computers behind your Firebox X
Edge cannot be the same as the IP addresses of the computers on
the other side of the VPN tunnel. If your trusted network uses the
same IP addresses as the office to which it will create a VPN
tunnel, then your network or the other network must change
their IP address arrangement to prevent IP address conflicts.
Managed VPN: With a Firebox III or Firebox X and
WatchGuard System Manager 8.0
You can configure a VPN tunnel on the Firebox® X Edge with two
procedures: Managed VPN and Manual VPN. This section tells you
how to configure your Firebox X Edge for it to be an endpoint in a
managed VPN tunnel. For information on creating a Manual VPN,
see “Manual VPN: Setting Up Manual VPN Tunnels” on page 140.
Dynamic VPN Configuration Protocol (DVCP) is the WatchGuar
protocol that you can use to create IPSec tunnels easily. The Watch-
Guard Management Server (previously known as the DVCP Server)