Solved

IPSEC VPN

Posted on 2016-08-08
10
54 Views
Last Modified: 2016-08-29
Hello,

Is is possible to create ipsec-vPn L2L tunnel when one of the sites is using non-static peer IP? (DHCP) that obviously changes it's IP daily/weekly etc...?  Is it possible to make this connection work even when the IP peer changes without any administrative overhead? is this doable on both ASA's and routers?

Thank you
0
Comment
Question by:Shark Attack
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
10 Comments
 
LVL 95

Expert Comment

by:John Hurst
ID: 41748021
Is it possible to create IPSec-vPn L2L tunnel when one of the sites is using non-static peer IP? (DHCP) that obviously changes it's IP daily/weekly etc.

No. Use Dyn DNS or equivalent.

You can do the above if the IP changes only occasionally, but not every day.
0
 
LVL 14

Accepted Solution

by:
SIM50 earned 500 total points (awarded by participants)
ID: 41748738
0
 
LVL 95

Expert Comment

by:John Hurst
ID: 41748743
True but if the dynamic IP changes weekly or more frequently as posed in the question, it is a waste of time because of the overhead.

I use dynamic IP at some sites but the changes are only occasional - less than twice yearly.
0
Defend Your Organization from The Greatest Threats

Looking to fill the gaps in your security? Bring together information from the network, endpoint and threat intelligence feeds to really see what's happening in your organization. Join the WatchGuardians in their adventures fighting cyber crime!

 
LVL 14

Expert Comment

by:SIM50
ID: 41748747
True but if the dynamic IP changes weekly or more frequently as posed in the question, it is a waste of time because of the overhead.

What overhead?
0
 
LVL 95

Expert Comment

by:John Hurst
ID: 41748749
You have to go into setup on the system and change the static IP. At least any client system I have used.
0
 
LVL 14

Expert Comment

by:SIM50
ID: 41748754
You have to go into setup on the system and change the static IP. At least any client system I have used.

LOL. I don't think you fully comprehend how dynamic VPN works. I would love to hear your theories about inner workings of DMVPN or GETVPN.
0
 
LVL 95

Expert Comment

by:John Hurst
ID: 41748760
I have ben using VPN for years. So post your STEPS instead on links people have to pore through.

Unsubscribed.
0
 
LVL 14

Expert Comment

by:SIM50
ID: 41748774
So post your STEPS instead on links people have to pore through.

Why reinvent the wheel? The links I posted have ASDM and CLI step by step instructions.
0
 
LVL 3

Author Comment

by:Shark Attack
ID: 41750389
well thank you both. I will give it a shot see how it works.
0
 
LVL 14

Expert Comment

by:SIM50
ID: 41774463
Provided links with step by step instructions how to implement either through ASDM or CLI.
0

Featured Post

NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

If you have an ASA5510 then this sort of thing would be better handled with a CSC Module, however on an ASA5505 thats not an option, and if you want to throw in a quick solution to stop your staff going to facebook during work time, then this is the…
Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question