05-20-2004 10:16 AM - edited 02-21-2020 01:10 PM
As on other products, is it possible to register remote site vpn router ip address in dynamic dns public server
In this way, I could associate presharedkey to a static FQDN instead of a wildcard preshared key
05-27-2004 05:52 AM
No, it is not possible. If you could register the remote site vpn router ip addr in Dyn DNS public server, it could be a compramise on the security aspect.
05-27-2004 07:44 AM
So why is it possible on Linksys routers (cisco's branch) ?
I could also allow dns update on my main site public DNS server, and only allow internal resources (ie vpn gateway) to get remote peers IP address on it.
More generally, I am wondering on the best manner to get dynamic remote ip address. I need for maintenance purposes to get access to some public city workstations .
Currently, on remote vpn Cisco routers, I use easyvpn
with Preshared key and Xauth. But having the router's password and access, an intruder could easily get PSK
. And having PSK come into local network.
Are certificates more secure ?
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: