Recover the Firebox Connection to WatchGuard Cloud

Applies To: Cloud-managed Fireboxes

For a cloud-managed Firebox, you can connect to Fireware Web UI to see the status of the Firebox connection to WatchGuard Cloud. If the cloud-managed Firebox cannot connect, you can also recover the connection to WatchGuard Cloud.

To log in to Fireware Web UI for a cloud-managed Firebox:

  1. From a computer on a network connected to the cloud-managed Firebox, open a web browser.
  2. In the web browser, go to https://<firebox IP address>:8080.
    The Fireware Web UI login page opens.
  3. Log in with the user name admin and the admin user account password you set for this device in WatchGuard Cloud.

The Information page shows the status of the Firebox connection to WatchGuard Cloud, including when there is a connection issue and the reason, such as:

  • No external interface is connected
  • No external network address is configured
  • No default gateway is configured
  • Unable to ARP to default gateway
  • No DNS server is configured
  • Unable to resolve the IP address of cloud.watchguard.com
  • Unable to connect to cloud.watchguard.com

If the Firebox is not connected to WatchGuard Cloud, you can recover the connection.

Renew the DHCP Lease

If the Firebox external interface uses DHCP to get an IP address, you can renew the DHCP lease.

To renew the DHCP lease:

On the Information page, click Renew DHCP.
The Firebox sends a request to the DHCP server to renew the lease.

Recover the Connection

If the Firebox is not connected to WatchGuard Cloud, you can recover the connection from Fireware Web UI.

If external networking information has changed, before you recover the connection, make sure to reconfigure the network settings in WatchGuard Cloud. When reconnection succeeds, the Firebox downloads the latest configuration file from WatchGuard Cloud and applies it to the Firebox.

To recover the connection:

  1. In Fireware Web UI, click Information.
    The Information page shows the status of the WatchGuard Cloud connection.

Screen shot of the Fireware Web UI Information for a Firebox that is not connected to WatchGuard Cloud

  1. To configure temporary network settings to recover the connection, click Connect.
    The Recover WatchGuard Cloud Connection settings page opens.

Screen shot of the Recover WatchGuard Cloud Connection settings

  1. Configure temporary network settings to enable the Firebox to connect.

Interface

Select the interface that connects this Firebox to a network with Internet access. You can select any interface.

Connection Type

The connection type specifies how to assign an IP address to the selected interface.

Select the connection type, and configure the required settings.

  • DHCP — Configure DHCP connection settings:
  • To enable the local DHCP server to assign an IP address to the Firebox, select Obtain an IP address automatically.
  • To manually assign an IP address, select Use this IP address, and type the IP address to use.
  • If your ISP or external DHCP server requires a client identifier, such as a MAC address, type the identifier in the Client text box. To specify a host name for identification, type it in the Host Name text box.
  • PPPoE — Configure PPPoE connection and authentication settings:
  • To enable the ISP to assign an IP address to the Firebox, select Obtain an IP address automatically.
  • To manually assign an IP address, select Use this IP address, and type the IP address to use.
  • Specify the User Name and Password you use for PPPoE authentication. Frequently, PPPoE user names are in email address format, such as [email protected].
  • Static — Configure static connection settings:
  • In the IP Address text boxes, enter a static IP address and subnet mask in slash notation. For information about slash notation, see About Slash Notation.
  • In the Gateway text box, enter the IP address of your Internet router or the gateway device at your ISP.

DNS Server

In the DNS Servers list, add the IP address of a Domain Name System (DNS) server your Firebox can connect to.

NIC Settings

Change the Link Speed and MTU for the network interface, if required for your network (this is not common).

  1. To retry the connection with the temporary settings, click Save.
    The Firebox tries to connect to WatchGuard Cloud.

If the connection succeeds, the Firebox downloads the latest configuration file from WatchGuard Cloud and applies it to the Firebox. The network settings configured for this Firebox in WatchGuard Cloud replace the temporary network settings you used to recover the connection.

If the Firebox loses the connection to WatchGuard Cloud after it downloads the new configuration file, log in to WatchGuard Cloud and make sure the Firebox configuration has the correct settings for the external network.

For information about Fireware Web UI, see About Fireware Web UI for a Cloud-Managed Firebox.

Reconnect a Cloud-Managed Firebox with Factory-Default Settings

We do not recommend that you reset a cloud-managed Firebox to factory-default settings in an attempt to recover the connection to WatchGuard Cloud.

If you have reset your cloud-managed Firebox to factory-default settings, you must remove it from WatchGuard Cloud before it can reconnect to the cloud. For more information, see Remove a Device from WatchGuard Cloud.

After the device connects to the cloud and downloads a configuration, you can revert to a previous deployment. For more information, see Revert to a Previous Device Deployment.

Related Topics

About WatchGuard Cloud