Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
301
Views
0
Helpful
2
Replies

registering Remote vpn peer IP Address in dynamic dns

falain
Level 1
Level 1

‎05-20-2004 10:16 AM - edited ‎02-21-2020 01:10 PM

As on other products, is it possible to register remote site vpn router ip address in dynamic dns public server

In this way, I could associate presharedkey to a static FQDN instead of a wildcard preshared key

Labels:
0 Helpful
2 Replies 2

umedryk
Level 5
Level 5

‎05-27-2004 05:52 AM

No, it is not possible. If you could register the remote site vpn router ip addr in Dyn DNS public server, it could be a compramise on the security aspect.

0 Helpful

falain
Level 1
Level 1
In response to umedryk

‎05-27-2004 07:44 AM

So why is it possible on Linksys routers (cisco's branch) ?

I could also allow dns update on my main site public DNS server, and only allow internal resources (ie vpn gateway) to get remote peers IP address on it.

More generally, I am wondering on the best manner to get dynamic remote ip address. I need for maintenance purposes to get access to some public city workstations .

Currently, on remote vpn Cisco routers, I use easyvpn

with Preshared key and Xauth. But having the router's password and access, an intruder could easily get PSK

. And having PSK come into local network.

Are certificates more secure ?

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents