Security e-Series
1748241 Members
3699 Online
108759 Solutions
New Discussion

Re: VPN SITE TO SITE

 
migvzla
New Member

VPN SITE TO SITE

Hello Guys



I have the follow scenario:



There is Headquarter connent to 4 Branch, In the Headquater is a Firewall x506 and in each branch is a firewall x5, i want to connect the diferents branch with the headquarter throght VPN Site to Site, my problem is that in the branch i dont have Fixed IPs, only have Fixed IP in the Headquare. I know that with DNS Dinamic i can to resolve, but if the headquarets has a ip fixed, is there some way for configure it?



Thank for your help

1 REPLY 1
chrisuk
Advisor

Re: VPN SITE TO SITE

Hi,



If it is not possible to have fixed IP addresses at the remote sites, then you need to use Aggressive mode in your IKE proposals.



This is not as secure as main mode though. So if they can have fixed IP's, then you should use that. Typically a static IP can be arranged with your ISP for a small fee.



This is discussed in more detail in the LSM Users Guide, in the VPN chapter



hope this is of use.

This message was edited by chrisuk on 9-15-09 @ 10:01 AM