Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
56
Views
0
Helpful
0
Replies

IEKV1 and IKEV2 Ipsec using DDNS

manojyesh
Level 1
Level 1

‎03-10-2025 10:59 PM

Dear Team,

Greetings,

I have routers from the 800 series and the 900 series on the Sites. The existing 800 series routers do not support IKEv2, while the 900 series does. I am looking to create IKEv2 configurations, which will include a Proposal, Keyring, Profile, and Crypto Map.

Our organization is using Dynamic DNS (DDNS) from dyndns.com and all sites have established IPsec VPN tunnels connecting to the Head Office (HO) properly. The DDNS is registered with the HO gateway (xxx.dyndns.com) and all sites point to the HO dyndns.com. Currently, all sites are configured for IKEv1, and I would like to transition a few routers to IKEv2. I would appreciate any guidance on setting up IKEv2 with DDNS.

I have not found specific guidance for configuring IKEv2 using DDNS on any websites. The HO gateway is a Cisco MX 105, which will support both IKEv1 and IKEv2. I am sharing the existing IKEv1 configuration of my current site router for reference.

 

crypto isakmp policy 1
hash md5
authentication pre-share
group 2
crypto isakmp key <presharedkey> address 0.0.0.0
crypto isakmp keepalive 20
crypto isakmp nat keepalive 20
!
!
crypto ipsec transform-set setA esp-des esp-md5-hmac
mode tunnel
!
!
!
crypto map mapA 1 ipsec-isakmp
set peer xxx.dyndns.com dynamic
set transform-set setA
match address 140

Thankyou for support and guidance.

 

 

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card