Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Virtual private networks
»
VTI FQDN [new] Config
« previous
next »
Print
Pages: [
1
]
Author
Topic: VTI FQDN [new] Config (Read 1103 times)
Lokutos
Newbie
Posts: 9
Karma: 0
VTI FQDN [new] Config
«
on:
March 20, 2023, 01:34:16 am »
I am migrating my VTI Routed Based VPN's from the Old Config Style to the new "Connection" Style.
Currently, I use FQDN's everywhere but now I'm struggling.
In the menus VPN -> IPsec -> Virtual tunnel Interface
I have to create an Interface, but I'm unable to enter a FQDN for the other or my local address.
I have to use the WAN IP's,
but if I want to connect a Firewall with a DNS name, it shows me an error (Not valid IP Address)
If I create it with an IP and only use a FQDN in the Connection, there is no traffic ...
is it with the new config style not possible to use FQDN's ?
Logged
Nef
Newbie
Posts: 1
Karma: 0
Re: VTI FQDN [new] Config
«
Reply #1 on:
July 01, 2023, 12:32:22 pm »
I am facing exactly the same problem.
I migrated the IPsec VPN (IKEv2) between my hosted VPS (OPNsense 23.1.11, static IPv4) and my DSL at home (Watchguard XTM25, dynamic IPv4 and dyndns) from the old config style to the new "Connections" interface and took the opportunity to switch from policy based to routing based.
The connection is established and everything works as expected as long as the current WAN IPs of both peers are entered in the "Local address" and "Remote address" fields of the VTI window (the one from your screenshot). If the WAN IP of my DSL changes, I need to update the value in the "Remote address" field manually, otherwise while the VPN connection itself is established fine, no data transfer between the sites is possible.
Does anyone know a solution or workaround to be able to use a FQDN instead of an IP address?
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Virtual private networks
»
VTI FQDN [new] Config