Operational Defect Database
BugZero found this defect 2162 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
WatchGuard Technologies | kA10H000000g3dMSAQ
Mobile VPN with SSL fails when external IP address part of 1-to-1 NAT on Firebox
Last update date:
6/18/2018
Affected products:
Firebox M200
Firebox M300
Firebox M270
Firebox M370
Firebox M470
Firebox M570
Firebox M670
Firebox M290
Firebox M390
Firebox M400
Firebox M500
Firebox M440
Affected releases:
All
Fireware
12.x
12.0.x
12.1.x
12.1
12.1.1
12.1.3
12.2.x
Fixed releases:
All
Description:
Issue
If your Firebox has a 1-to-1 NAT rule that includes the external IP address specified in your Mobile VPN with SSL configuration, Mobile VPN connections fail to connect for that IP address.
Workaround/Solution
If you need to use an IP address for connections to the Firebox and also to an internal server, you can define that IP address as a secondary network and use Static NAT instead.
