Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2859
Views
0
Helpful
1
Replies

IPsec Tunnel Using Dynamic DNS Instead Of IP Address

Hawk
Level 1
Level 1

‎05-07-2018 07:18 AM - edited ‎03-12-2019 05:15 AM

Does any version of Software running on any ios or ios-xe routers (i.g 1941/ASR 1000) or an ASA (x series & traditional ASA) support the use of dynamic dns names for remote peer (IPsec tunnel) rather than traditional IP address?

 

I suppose that this would require the cisco router or ASA to have DNS configured on the box? I don't recall ever seeing a dns option on these types of cisco routers & firewalls, on the interface settings or anywhere else.

Labels:
0 Helpful
1 Reply 1

Ben Walters
Level 4
Level 4

‎05-07-2018 10:27 AM

I believe this document should help you out with this:

https://supportforums.cisco.com/t5/security-documents/dynamic-ip-to-dynamic-ip-ipsec-vpn-tunnel/ta-p/3122900

 

It really depends on how your setup is configured, if only 1 side has dynamic addressing and the head end has a static IP you can basically just configure the head end router/ASA to possibly accept any connection and a tunnel is created if there is a matching connection profile set up. That way if the remote router/ASA obtains a new IP it shouldn't matter.    

 

 

0 Helpful
Customers Also Viewed These Support Documents