- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Is it possible to create site to site VPN where one connection has Dyndns.org IP?
Hi,
I have two sites I want to connect via a site to site VPN. Both sites have a FG and only site A has a fixed IP address from the ISP. Site B uses a dynamic IP address. Can I use something like Dyndns,org to get around this?
The main problem is if the coax modem in site B get switched off it will loose its IP address. Then the Fortigate VPN configuration will be null.
Thanks,
Rob
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
IPsec tunnel with Dynamic DNS as Remote Gateway + FortiGuard DDNS.
40F, 50E, 60E
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
or if you want to do on cli:
e.g. for an exsting ipsec tunnel:
config vpn ipsec phase1-interface
edit <phase1-name>
set type ddns
set remotegw-ddns = <ddns-fqdn>
next
end
if you want to go back to static ip:
edit phase1 again and do
unset type
unset remotegwe-ddns
set remote-gw <ip>
end
BTW: in older FortiOSes the option was named "FQDN" or something like that.
--
"It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
ok thanks guys. I'll give it a go..