IPSEC VPN

Hello,

Is is possible to create ipsec-vPn L2L tunnel when one of the sites is using non-static peer IP? (DHCP) that obviously changes it's IP daily/weekly etc...?  Is it possible to make this connection work even when the IP peer changes without any administrative overhead? is this doable on both ASA's and routers?

Thank you
LVL 3
Shark AttackNetwork adminAsked:
Who is Participating?
 
John HurstBusiness Consultant (Owner)Commented:
Is it possible to create IPSec-vPn L2L tunnel when one of the sites is using non-static peer IP? (DHCP) that obviously changes it's IP daily/weekly etc.

No. Use Dyn DNS or equivalent.

You can do the above if the IP changes only occasionally, but not every day.
0
 
John HurstBusiness Consultant (Owner)Commented:
True but if the dynamic IP changes weekly or more frequently as posed in the question, it is a waste of time because of the overhead.

I use dynamic IP at some sites but the changes are only occasional - less than twice yearly.
0
Identify and Prevent Potential Cyber-threats

Become the white hat who helps safeguard our interconnected world. Transform your career future by earning your MS in Cybersecurity. WGU’s MSCSIA degree program was designed in collaboration with national intelligence organizations and IT industry leaders.

 
SIM50Commented:
True but if the dynamic IP changes weekly or more frequently as posed in the question, it is a waste of time because of the overhead.

What overhead?
0
 
John HurstBusiness Consultant (Owner)Commented:
You have to go into setup on the system and change the static IP. At least any client system I have used.
0
 
SIM50Commented:
You have to go into setup on the system and change the static IP. At least any client system I have used.

LOL. I don't think you fully comprehend how dynamic VPN works. I would love to hear your theories about inner workings of DMVPN or GETVPN.
0
 
John HurstBusiness Consultant (Owner)Commented:
I have ben using VPN for years. So post your STEPS instead on links people have to pore through.

Unsubscribed.
0
 
SIM50Commented:
So post your STEPS instead on links people have to pore through.

Why reinvent the wheel? The links I posted have ASDM and CLI step by step instructions.
0
 
Shark AttackNetwork adminAuthor Commented:
well thank you both. I will give it a shot see how it works.
0
 
SIM50Commented:
Provided links with step by step instructions how to implement either through ASDM or CLI.
0
All Courses

From novice to tech pro — start learning today.