Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
MarcP1
New Contributor II

Created on ‎03-14-2025 01:06 AM

IPSec Tunnel with dyndns not working after public IP renewal

Hi all,

 

in a hand full of sites we have got problems with our dyndns connected ipsec sites.

These tunnels have to be manually reseted from time to time.

 

Within the logs I can see the tunnel is getting down and our HQ Fortigate tries to connect to the old public IP address.

Also shown in the log, the new public IP is trying to initiate a connection to the HQ FG. 

Seams like the FG is not updating its dns entry for this site. 

 

After disable/enable the tunnel the site is up immediately. 

 

Anyone got an idea on this? Can´t be the solution to restart a tunnel from time to time.

 

Regards

Marc

Labels:
594
0 Kudos
12 REPLIES 12
MarcP1
New Contributor II
In response to AEK

Created on ‎03-17-2025 07:03 AM

Would like to, but the command does not exist.

 

 

FG.png

114
0 Kudos
MarcP1
New Contributor II
In response to AEK

Created on ‎03-17-2025 07:16 AM

Do I have to write it in there / like this?

 

config System ddns

edit 1

set monitor interface "TunnelName"          - or the WAN Interface in general?

set use-public-ip enable

 set update-interval 60

end

109
0 Kudos
AEK
SuperUser
SuperUser
In response to MarcP1

Created on ‎03-17-2025 07:42 AM

use-public-ip will be available once you set ddns-server to FortiGuardDDNS

AEK
AEK
99
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.