VPN – WatchGuard Fireware
In this topic, you will learn how to configure WatchGuard Fireware Mobile VPN to work together with Portnox™ Cloud and 802.1X RADIUS authentication for VPN connections.
Important: This guide provides general instructions for integrating Portnox Cloud with specific
third-party devices. While we aim to provide helpful examples for commonly used models, configurations may vary across
manufacturers, models, and environments. As a result, we cannot guarantee that these steps will work in every
scenario. For questions or issues related to RADIUS setup – which is an industry standard and not specific to
Portnox – or device-specific settings and troubleshooting, we recommend consulting the device manufacturer’s documentation
and contacting their support team. While Portnox Support is happy to assist where possible, please note that detailed
configuration of third-party devices is typically best handled by the manufacturer.
Warning: This topic contains documentation prepared by our support agents more than 12 months ago. It
may not cover the newest models or the newest interfaces of NAS devices. We’re working on bringing you updated documentation
for NAS devices in the near future. However, the methods of setting up third-party devices may still change when the
manufacturers update their firmware or release new models.
-
In the WatchGuard Fireware web interface, navigate to
to create a RADIUS authentication server configuration:
- Activate the Enable RADIUS Server checkbox.
- Enter your cloud RADIUS details for RADIUS authentication (not accounting).
- Set Timeout to 30 seconds.
- Click on Save.
- Complete one of the following sections, depending on whether you want to configure an L2TP VPN or an SSL VPN.
Configure an L2TP VPN
- Navigate to Configure. and click on
- Activate the Activate Mobile VPN with L2TP checkbox.
-
In the Network tab, add the desired Virtual IP Address Pool.
-
In the Authentication tab:
-
In the IPSec tab, activate the Enable IPSec checkbox, and configure
the following:
- Click on Save.
Configure an SSL VPN
- Navigate to Activate Mobile VPN with SSL checkbox. and activate the
-
In the General tab, select the Primary IP address or domain name for
SSL users to connect to.
-
In the Authentication tab:
- Click on Save.