4. DYNAMIC PUBLIC IP in pfesense IPSEC?

DYNAMIC PUBLIC IP in pfesense IPSEC?

  • S

    I want to establish IPSec Tunnel using PFSense f but my problem is, we used broadband connection in one end which used Dynamic IP. Any suggestion on how to do this?

    0
  • V

    It is possible to do this.

    Probably the easiest way is to ensure that you have resolvable DNS hostnames for each public facing endpoint interface. I use a DynamicDNS provider with pfSense. Get this working first.

    Don't use any public IP addresses in your Phase 1 config unless they are static IP addresses. Use the DynamicDNS hostnames instead.

    E.g. on one end…

    Remote Gateway: farfaraway.dynamic.dns
    My Identifier: Distinguished Name: thisbox.dynamic.dns
    Peer Identifier: Distinguished Name: farfaraway.dynamic.dns
    Pre-Shared Key: OurSecret

    on the other end...

    Remote Gateway: thisbox.dynamic.dns
    My Identifier: Distinguished Name: farfaraway.dynamic.dns
    Peer Identifier: Distinguished Name: thisbox.dynamic.dns
    Pre-Shared Key: OurSecret

    The Phase 2 configs will have the IP network addresses of your internal network, typically private addresses. No dynamic dns required here.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy