Operational Defect Database
BugZero found this defect 3198 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
WatchGuard Technologies | kA10H000000g3hCSAQ
Cannot save aggressive mode BOVPN gateway in Web UI with multiple endpoints on same interface
Last update date:
8/17/2015
Affected products:
Firebox M200
Firebox M300
Firebox M270
Firebox M370
Firebox M470
Firebox M570
Firebox M670
Firebox M290
Firebox M390
Firebox M400
Firebox M500
Firebox M440
Affected releases:
All
Fireware
11.x
11.10.x
11.10.2
Fixed releases:
All
Description:
Issue
In Fireware Web UI, you cannot save a new Branch Office VPN Gateway if: Your configuration already includes a Branch Office Gateway with main mode; ANDThe new gateway configuration has multiple endpoints; ANDMore than one of the endpoints has the same local gateway ID, and the remote gateway IP is configured as Any. When this occurs, you will see an error message that looks like this:Two gateway endpoints cannot use the same local gateway interface and remote gateway IP address. A gateway endpoint in Gateway-Office1, already uses these settings:Local gateway interface: External; Remote gateway IP address: Any. This issue will also prevent changes to an existing Branch Office Gateway if all conditions are met.
Workaround/Solution
There are two ways to work around this issue: This issue does not occur with Policy Manager.If you temporarily change the existing Branch Office Gateway to use aggressive mode, you can save the new Branch Office Gateway, and then change the existing Branch Office Gateway back to main mode.
