IPSEC VPN

Hello,

Is is possible to create ipsec-vPn L2L tunnel when one of the sites is using non-static peer IP? (DHCP) that obviously changes it's IP daily/weekly etc...?  Is it possible to make this connection work even when the IP peer changes without any administrative overhead? is this doable on both ASA's and routers?

Thank you
LVL 3
Shark AttackNetwork adminAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
JohnBusiness Consultant (Owner)Commented:
Is it possible to create IPSec-vPn L2L tunnel when one of the sites is using non-static peer IP? (DHCP) that obviously changes it's IP daily/weekly etc.

No. Use Dyn DNS or equivalent.

You can do the above if the IP changes only occasionally, but not every day.
0
 
JohnBusiness Consultant (Owner)Commented:
True but if the dynamic IP changes weekly or more frequently as posed in the question, it is a waste of time because of the overhead.

I use dynamic IP at some sites but the changes are only occasional - less than twice yearly.
0
What Kind of Coding Program is Right for You?

There are many ways to learn to code these days. From coding bootcamps like Flatiron School to online courses to totally free beginner resources. The best way to learn to code depends on many factors, but the most important one is you. See what course is best for you.

 
SIM50Commented:
True but if the dynamic IP changes weekly or more frequently as posed in the question, it is a waste of time because of the overhead.

What overhead?
0
 
JohnBusiness Consultant (Owner)Commented:
You have to go into setup on the system and change the static IP. At least any client system I have used.
0
 
SIM50Commented:
You have to go into setup on the system and change the static IP. At least any client system I have used.

LOL. I don't think you fully comprehend how dynamic VPN works. I would love to hear your theories about inner workings of DMVPN or GETVPN.
0
 
JohnBusiness Consultant (Owner)Commented:
I have ben using VPN for years. So post your STEPS instead on links people have to pore through.

Unsubscribed.
0
 
SIM50Commented:
So post your STEPS instead on links people have to pore through.

Why reinvent the wheel? The links I posted have ASDM and CLI step by step instructions.
0
 
Shark AttackNetwork adminAuthor Commented:
well thank you both. I will give it a shot see how it works.
0
 
SIM50Commented:
Provided links with step by step instructions how to implement either through ASDM or CLI.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.