Introduction |
The following chapter describes how to configure an IPSec tunnel with dynamic IP addresses on both sides.
You use certificates instead of preshared keys for authentication. You also configure an entry for your DynDNS name in the gateway.
Configuration in this scenario is carried out using the GUI™ (Graphical User Interface).
Example scenario IPSec with certificates
The following are required for the configuration:
Basic configuration of the gateway, e.g. bintec be.IP plus™
A boot image version 10.1.1 must be used for the IPSec gateway
Configuration requires working Internet access to the provider
You must have registered a DynDNS name, e.g. headoffice.dyndns.org and branchoffice.dyndns.org for both gateways.
You need a certification authority (CA) from which you can request certificates. Find out from your chosen certification authority what information is required to request certificates and the methods for sending the request.
Copyright© Version 08/2020 bintec elmeg GmbH |