1. Home
  2. pfSense® Software
  3. IPsec
  4. Dynamic DNS as My Identifier– Cannot Establish the tunnel

Dynamic DNS as My Identifier– Cannot Establish the tunnel

  • T

    Hello, I have setup two pfsense; one using static IP address and the other is dynamic. I saw a thread regarding this so what I did is I created a dynamic dns in no-ip.org so that it will become my identifier. seems that my configuration were ok for both sides (as i followed the instruction on the thread in this forum), but unfortunately, it is still unable to connect. the log says unknown gateway/ dynamic. to check if my dynamic dns is working, i did an nslookup on both network and it can resolve. what seems to be lacking on my configuration? do i need to configure the dynamic dns on the static pfsense box too (i configured the dynamic dns on the dynamic pfsense box)? Thank you in advance!

    0
  • K

    why not just use a distinguished name?  That way you define it yourseld and it remains static.

    0
  • jimp
    Rebel Alliance Developer Netgate

    You're overcomplicating it a bit. The dynamic DNS identifier type is only needed if that end is behind NAT and can't directly see its external IP.

    Just use the dyndns hostname in the peer address on the other side, and leave all of the identifiers set to "My IP address" or "Peer IP address".

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy