Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPSec on a site-to-site VPN with one side dynamic IP?

    Scheduled Pinned Locked Moved IPsec
    2 Posts 2 Posters 1.9k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      rhakar
      last edited by

      Hi all,

      I need to implement a VPN between two endpoints with one pFsense and one Watchguard. The pfSense has a static Ip but the other side with watchguard no, only dynamic and without DDNS.

      It is possible to make an IPSec with a dynamic Ip endpoint? With Watchguard is possible by domain information without using DDNS. As i saw pfSense does not accept domain information as method to recognize endpoint gw ID.

      Any suggestion?

      Thanks in advance.

      1 Reply Last reply Reply Quote 0
      • L
        lst_hoe
        last edited by

        It is possibly as long as only one side need to be able to "open" the tunnel, much like in Mobile Client setup. With IKEv1 you need "aggressive" Mode at least with PSK, with IKEv2 you simply have to use a ID other the the IP address.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.