Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

IPSEC VPN

Posted on 2016-08-08
10
Medium Priority
?
64 Views
Last Modified: 2016-08-29
Hello,

Is is possible to create ipsec-vPn L2L tunnel when one of the sites is using non-static peer IP? (DHCP) that obviously changes it's IP daily/weekly etc...?  Is it possible to make this connection work even when the IP peer changes without any administrative overhead? is this doable on both ASA's and routers?

Thank you
0
Comment
Question by:Shark Attack
  • 5
  • 4
10 Comments
 
LVL 99

Expert Comment

by:John Hurst
ID: 41748021
Is it possible to create IPSec-vPn L2L tunnel when one of the sites is using non-static peer IP? (DHCP) that obviously changes it's IP daily/weekly etc.

No. Use Dyn DNS or equivalent.

You can do the above if the IP changes only occasionally, but not every day.
0
 
LVL 14

Accepted Solution

by:
SIM50 earned 2000 total points (awarded by participants)
ID: 41748738
0
 
LVL 99

Expert Comment

by:John Hurst
ID: 41748743
True but if the dynamic IP changes weekly or more frequently as posed in the question, it is a waste of time because of the overhead.

I use dynamic IP at some sites but the changes are only occasional - less than twice yearly.
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 14

Expert Comment

by:SIM50
ID: 41748747
True but if the dynamic IP changes weekly or more frequently as posed in the question, it is a waste of time because of the overhead.

What overhead?
0
 
LVL 99

Expert Comment

by:John Hurst
ID: 41748749
You have to go into setup on the system and change the static IP. At least any client system I have used.
0
 
LVL 14

Expert Comment

by:SIM50
ID: 41748754
You have to go into setup on the system and change the static IP. At least any client system I have used.

LOL. I don't think you fully comprehend how dynamic VPN works. I would love to hear your theories about inner workings of DMVPN or GETVPN.
0
 
LVL 99

Expert Comment

by:John Hurst
ID: 41748760
I have ben using VPN for years. So post your STEPS instead on links people have to pore through.

Unsubscribed.
0
 
LVL 14

Expert Comment

by:SIM50
ID: 41748774
So post your STEPS instead on links people have to pore through.

Why reinvent the wheel? The links I posted have ASDM and CLI step by step instructions.
0
 
LVL 3

Author Comment

by:Shark Attack
ID: 41750389
well thank you both. I will give it a shot see how it works.
0
 
LVL 14

Expert Comment

by:SIM50
ID: 41774463
Provided links with step by step instructions how to implement either through ASDM or CLI.
0

Featured Post

Lessons on Wi-Fi & Recommendations on KRACK

Simplicity and security can be a difficult  balance for any business to tackle. Join us on December 6th for a look at your company's biggest security gap. We will also address the most recent attack, "KRACK" and provide recommendations on how to secure your Wi-Fi network today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This past year has been one of great growth and performance for OnPage. We have added many features and integrations to the product, making 2016 an awesome year. We see these steps forward as the basis for future growth.
Considering cloud tradeoffs and determining the right mix for your organization.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses

773 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question