Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
475
Views
0
Helpful
1
Replies

Site-to-site using DNS name

the-lebowski
Level 4
Level 4

‎06-01-2011 09:42 AM - edited ‎03-04-2019 12:35 PM

I have some home office setups that have s2s VPNs which terminate on my netscreen SSG5.  I am moving off the SSG and onto an ASA5510 but not sure if or how I can make this work?  The end users do not have static IPs at this point.  I use dyn dns on their home routers to update their DHCP IPs from the providers.  If they can't get static IPs how can I specify the peer ID with a DNS name rather than IP address?

Labels:
0 Helpful
1 Reply 1

Thotsaphon Lueangwattanaphong
Level 7
Level 7

‎06-01-2011 11:25 AM

Hi,

   ASA cannot do what you want. You can define hostname on a set peer command but hostname is reffered to the name command on ASA. So DNS doesn't get involved in this process. If you've got dynamic ip addresses on both sites,you cannot do this. It's possible if you have a static pubic ip address on one site, you can do site-to-site VPN but you need to generate interesting traffic on the site using dynamic public ip address first to build the tunnel.

  Hope ASA can do this someday soon (grin)

HTH,

Toshi

0 Helpful
Customers Also Viewed These Support Documents