Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
272
Views
0
Helpful
1
Replies

Can I use ip address and hostname to establish Site 2 Site VPN?

adilmasani
Level 1
Level 1

‎03-06-2007 03:14 PM - edited ‎02-21-2020 02:54 PM

Is it possible to use both; hostname or ip address while trying to setup an ipsec tunnel?

The scenario we have is that there is a customer who has one central site and 10 remote sites. Each site exists for a period of 3 to 6 months and then the staff moves to another location as a result the router/firewall and other IT resources are moved too. This requires me to setup and tear down tunnels from the head office as well as remote sites. To avoid this, i was thinking of using dynamic DNS which would save me a lot of work. Is it possible that I can setup VPN tunnels by either method i.e. hostname and ip address or do I have to stick with any one method only? As a reference the command used to identify peers is

"isakmp identity {address | hostname}"

The firewall version is 7.0(5)

Labels:
0 Helpful
1 Reply 1

Kamal Malhotra
Cisco Employee
Cisco Employee

‎03-06-2007 03:43 PM

Hi,

If you want to use IP addresses also then you could probably configure dynamic L2L VPN connections so that even if the IP address etc of the remote site changes, it is able to connect to the central site without making any change on the central device. For the remote sites that have the static public IPs, you can create static L2L VPN connections.

HTH,

Please rate if helps,

Regards,

Kamal

0 Helpful
Customers Also Viewed These Support Documents