Hello Valerio!
Could you clarify one point - which device is the default gateway for the hosts in VLANs 5 and 10 - 1920 or Watchguard Firewall?
I see, so then your 1920 has very little to do with the problem. WoL packets can be either IP broadcast (destination address 255.255.255.255) or IP directed broadcast (destination address - broadcast address of the subnet, for example 192.168.0.255 in case the subnet is 192.168.0.0/24). From the Layer 2 switch point of view both types are broadcast Ethernet packets with destination address ffff-ffff-ffff and those packets always stay in their own VLAN. This is the logic of 1920 without Vlan-interfaces (SVIs) configured, e.g. when it works as a plain Layer 2 switch.
If WoL works inside a VLAN over the 1920, it means it doesn't block those packets and now everything depends on the router, in your case the Watchguard Firewall is the router for those VLANs, so it must have a mechanism to detect such packets and to forward them to the destination. In Comware world this mechanism is called UDP helper and IP broadcast forwarder, for Watchguard I am not sure, but in general it should be some mechanism that intercepts directed IP broadcasts that have encapsulated UDP segments with destination ports 6 and 7 and forward those broadcast packets through the Vlan-interface that has IP in that subnet.
Example:
Watchguard settings:
Vlan 5 - 192.168.5.1/24
Vlan 10 - 192.168.10.1/24
If WoL magic packet is IP directed broadcast sent from Vlan 5 with destination IP 192.168.10.255 (broadcast IP of the Vlan10), then Watchguard must intercept that packet using UDP destination port 6 or 7 as criterion and forward it as a Ethernet broadcast through its Vlan-interface10, so it can reach its destination host and wake it up.
Hello Valerio!
Sorry if I got you wrong, could you clarify again - does WoL work inside one Vlan?
Also, sorry for misunderstanding - you initially stated it is 1920 switch, which is Comware-based. Now it is clear it is 1920s which is totally different switch with totally different feature set. Even if you set 1920s to perform inter-vlan routing and serve as a default gateway for your clients, it doesn't have UDP forwarder feature, so WoL will never work between VLANs if this switch will be the router. In case if WoL works correctly inside one VLAN, your only hope to get WoL between VLANs working is to tune the Firewall (that is the router right now) to forward directed broadcasts between VLANs.