Hello there, im fairly new to Fortinet hardware so i figured i could ask this question in here: I've setup a site-to-site IPSEC tunnel, my problem is that one of the sites has DHCP on the WAN port. Meaning that if the FortiGate resets, it will get a new ip address and then the tunnel will go down.
How do i configure an IPSEC tunnel where one of the sites gets its WAN IP via DHCP?
Thanks in advance :)
since you don't always want to reconfigure your IPSEC whan that WAN IP changes use some dyndns service to create a FQDN that resolves to that ip and make sure there is some client on the DHCP WAN Site that keeps the dyndns up to date. Then set your IPSEC to use an FQDN as remote gw and set it to the dyndns your created.
If the DHCP WAN Site is a FortiGate too you could easily use the built in fortiddns service on that FGT :)
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
