I have recently acquired a WatchGuard Firewall to protect a small home business network, nothing major. However, despite being fairly well versed in programming and general systems configuration, I have always shied away from networking. Hence, beyond configuring simple routers, I do not have the technical ability to configure a WatchGuard firewall. The documentation is confusing and sparse and I want to set it up and leave it, rather than continually need to re-configure it. Therefore, I'm looking for someone to work with me over Skype/LogMeIn/TeamViewer - helping me to configure the device for my needs.
Here is my setup:-
DSL Modem (INTERNET PIPE).
Connected to Ethernet port 1 of DSL Modem is a D-LINK ROUTER.
Connected to Ethernet port 1 of D-LINK ROUTER is TERMINAL 1 (computer).
Connected to Ethernet port 2 of D-LINK ROUTER is TERMINAL 2 (computer).
Connected to Ethernet port 3 of D-LINK ROUTER is WatchGuard Firewall.
Connected to Ethernet port 1 of WatchGuard Firewall is TERMINAL 3 (computer).
Connected to Ethernet port 2 of WatchGuard Firewall is TERMINAL 4 (computer).
This all works fine. TERMINAL 3 and TERMINAL 4 can access the Internet.. however, they cannot see TERMINAL 1 and TERMINAL 2. TERMINAL 1 and TERMINAL 2 cannot see, nor ping TERMINAL 3 and TERMINAL 4. TERMINAL 3 is a web server, and this cannot be accessed either from TERMINAL 1 or 2 by going to http://<ip address>:8080. However, TERMINAL 3 can be viewed by TERMINAL 4.
Soo.. with all the confusion out of the way. Basically, I'd like to have the ability for TERMINAL 1 and TERMINAL 2 to be able to access TERMINAL 3 and TERMINAL 4 (the ones sitting behind the WatchGuard firewall). However, I ONLY WANT these two terminals (1 and 2) to be able to access them. i.e. No Internet traffic should be able to. In addition, I'd like to give TERMINAL 3 and TERMINAL 4, a static internal IP address for each of them i.e. 10.0.0.50 and 10.0.0.100 respectively. I know one can change the DHCP server so that 10.0.0.1 and 10.0.0.2 is granted, but, I'd like them to have unique IP addresses and static (the same) each time the device is rebooted.
I require your assistance over TeamViewer/Skype or IM to configure my WatchGuard Firewall device to allow the two computers that are not directly plugged into it, to be able to access the two computers that are plugged into it. And give these two computers behind the firewall, static IP addresses. This may well be very easy for the right person.. I got close myself messing around, but I want to make sure the right policies are in place.
Skills: routers, logmein