Dynamic IP

jimp

With pfSense 1.2.3-RC you can setup dynamic DNS with a place like dyndns.org and use the hostname as the remote peer for the IPsec tunnel.

If only one side is dynamic, you could also use a "Mobile client" setup where the static side will accept mobile client tunnel connections, and the dynamic side is setup just as a normal tunnel would be. (That's how I go from home to work right now)

metacube

with pfSense 1.2.3-RC2 dynamic dns vpn doesn't work.
all dyndns namse create this failure
A valid Dynamic DNS address for 'My identifier' must be specified.

jimp

Last time I tried it, it worked. I believe you leave the Identifier set at the default and put the dyndns hostname in the remote peer field. I could be wrong on that though.

Either way, a mobile tunnel would still work.

joebobfrank

Thanks jimp, I'll have to try that.

fastcon68

I have Dymanic DNS sites that use Dymanic DNS in the Remote Gateway field.  They are main sites not moblie sites and the VPN connections stay up without issue.

May sure that you have one computer on the remote site running the Dymanic DNS client or use the Dymanic DNS client on your router if it is not PF-Sense.  That works awesome!!

I chose that route due to the equipment that was avaiable at the time and have not looked back.  It works without issue.
RC

metacube

the remote router accepts  ip or dyndns adresses (zywall 35).,.

Here is a screenshot of my ipsec config with the problem.

http://www.pic-upload.de/view-3030267/dynipsec.jpg.html

jimp

Change "My Identifier" back to "My IP Address" and you'll probably be fine.

metacube

ok have change it, not this message comes up.

racoon: ERROR: invalid ID payload.
Sep 7 21:39:36 racoon: ERROR: Expecting IP address type in main mode, but FQDN.
Sep 7 21:39:36 racoon: WARNING: ignore INITIAL-CONTACT notification, because it is only accepted after phase1.

with static ip adresses instead bob or alice  it works without problems.

jimp

When you changed that back to "My IP Address" did you also erase the contents of the box on the same line?

It should be blank.

metacube

the right box  contend with My IP Address  is  blank.

i had restarted my system before

metacube

SOLVED

i have filled the mobil client section, now it works

thanks for help