Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
332
Views
0
Helpful
2
Replies

IPSEC VPN Where all routers are DHCP To Internet

ctimko
Level 1
Level 1

‎09-07-2004 10:00 AM - edited ‎02-21-2020 01:19 PM

Does anyone know how to implement a VPN where all of the participants have dynamic routable addresses?

Labels:
0 Helpful
2 Replies 2

thiland
Level 3
Level 3

‎09-07-2004 02:34 PM

I ran into a similar requirement and the solution suggested to me was the "Real-time Resolution for IPSec Tunnel Peer" feature.

Basically, you add the keyword "dynamic" to the end of your "set peer hostname" command, and it will resolve the DNS hostname each time it attempts to contact the peer.

http://www.cisco.com/en/US/products/sw/iosswrel/ps5207/products_feature_guide09186a00801d1cb5.html

Note also that you will need to use a dynamic DNS updater service such as DynDNS.org or DtDNS.com.

-Tanner

0 Helpful

ctimko
Level 1
Level 1
In response to thiland

‎09-08-2004 04:45 AM

Tanner,

That is superb. I currently use dynu basic at dynu.com to do resolution. all I do is simply load the tiny client software on a pc behind each router and the pc goes to dynu about every 60 seconds and updates the current IP. So, I can always reach the routers with a qualified host name. I have been changing my peers up until now. It's a real headache. I will check your solution out. Thanks!!

0 Helpful
Customers Also Viewed These Support Documents