I want to establish a VPN tunnel with AWS using IPSec (Vyatta).
There is something that I was not able to figure out: How do I make it work without having to configure a static IP for the customer gateway?
I want the client to establish the connection because the public IP of the client could change due to using ADSL/VDSL access.
When I try to configure the VPN, I get the following warning regarding the fact that the local address was not configured:
Warning: Local address MY_PUBLIC_IP specified for peer "AWS_PUBLIC_IP"
is not configured on any of the ipsec-interfaces and is not the
clustering address. IPsec must be re-started after address
has been configured.
Best Answer
If the client's gatewayd evice has the option for DDNS, you can assign a DDNS domain name to it. That way, you don't have to worry about IP changing because the domain name is constant.