hello
did anybody try to setup an IPSEC tunnel connection to a client router with dynymic ip address ?
in this case it is a AVM Fritzbox, but i also cant find a way how to do it with a mikrotik box.
the client (fritz box) has a dyndns name, and when i enter the actual ip into my mikrotik config the tunnel works
until the ip address changes (my side has a static ip).
i found no possibility to enter a dns name to ipsec config on my mikrotik as it is possible in many other firewall boxes (zyxel, juniper..)
do i need to write a script, when the client ist not reachabel any more and then check the new ipaddress from dns and then change the peer ip in the ipsec config - this cant be the way…
but works only until ip from client is renewed…
first time the dynamic policies have not been deleted
after SA flush the connecetion got up again
after next iprenew the dynamic policies have been deleted and a new SA has been stared
but no policies haven been built…
very strange all that…