12-02-2010 10:51 AM - edited 02-21-2020 05:00 PM
Is it possible to use Hostnames instead of IP addressing for ISAKMP when a Spoke VPN comes into the Hub using routers?
The issue is the remotes could come from anywhere, so the Hub will never know the IP address to set up different Pre-Shared-Keys in that respect.The following statement "crypto isakmp key (Pre-Shared-Key) address 0.0.0.0 0.0.0.0" Is the only thing that seems to work, but want to do pre-share or authenication with DMVPN by hostnames.
If there is another way using DMVPN do allow each Spoke to have it's own unique "Pre-Shared" key, Please let me know.
Thanks.
12-02-2010 10:57 AM
You could use keyrings in that case
Crypto Keyring Configuration
12-02-2010 11:24 AM
Of course there is, it's known as certificates, and really is the way to go when you have more than two devices in your vpn setup.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide