Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 999
  • Last Modified:

Cisco site to site vpn using fqdn

Is it possible for two Cisco ASA 5500 series to do site to site vpn using FQDN instead of IP addresses? If not, any idea on how to configure automatic failover between two locations with site to site vpn, each with an ASA 5500 series, and each ASA has 2 different internet connections? Thank you.
0
alex9420
Asked:
alex9420
  • 2
1 Solution
 
max_the_kingCommented:
Hi,
you can set multiple peers in tour cryptomap: for example:

crypto map your_map 10 set peer 1.2.3.4 5.6.7.8

that way you tell asa to check for remote peer 1.2.3.4 and, in case it does not respond, it will check on ip 5.6.7.8

you can do this on any asa peer you want to get into the tunnel

hope this helps
max
0
 
alex9420Author Commented:
Max,
Thank you for your reply. Your suggestion will work if all the internet connections for each locations have static IP addresses, but is there any way to get it working if one of the two internet connections for each location is a dynamic IP? Sorry for not including that fact on my original post.
0
 
pcesolutionsCommented:
DMVPN
0
 
alex9420Author Commented:
Pcesolutions,
Look like it may work. I will check it out. Thank you.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now