It is hard to describe my topology so I drew it out and it should be attached to this.
We have three sites, Florida, New York, and California connected via Branch Office VPNs.
Florida
Watchguard X700
LAN-192.168.0.0/24
I also have my web/email server attached to the WG using our Public IP's.
NY
Watchguard Edge
LAN-192.168.1.0/24
CA
Watchguard Edge
LAN-192.168.2.0/24
We recently switched to a Verizon MPLS network.
The problem is that if I take the two Edges out of the equation and let the traffic come in on the MPLS...they can not access my exchange server.
In my X700 I see a
DENY Out Eth1 TCP 20 124 192.168.2.101 71.85.32.41 110 Spoofed Address, every time someone hits send/receive in outlook. (I have them set up to just POP my mail server)
If I can provide any more info please let me know.
Thank you,
We have three sites, Florida, New York, and California connected via Branch Office VPNs.
Florida
Watchguard X700
LAN-192.168.0.0/24
I also have my web/email server attached to the WG using our Public IP's.
NY
Watchguard Edge
LAN-192.168.1.0/24
CA
Watchguard Edge
LAN-192.168.2.0/24
We recently switched to a Verizon MPLS network.
The problem is that if I take the two Edges out of the equation and let the traffic come in on the MPLS...they can not access my exchange server.
In my X700 I see a
DENY Out Eth1 TCP 20 124 192.168.2.101 71.85.32.41 110 Spoofed Address, every time someone hits send/receive in outlook. (I have them set up to just POP my mail server)
If I can provide any more info please let me know.
Thank you,