<div dir="ltr">There are two methods possible ways of doing this (to me). <div><br></div><div style>1) Stand up two VPN tunnels and just have one down at all times. You would use your existing configuration (assuming it's main mode) and just change the source IP where you expect the VPN initiator to come from.</div>
<div style><br></div><div style>2) Change your existing main mode vpn into an aggressive mode VPN. This way you can local identity authenticate based upon FQDN and the IP check of the initiator doesn't take place. </div>
<div style><br></div><div style>This might help: <a href="http://www.juniper.net/techpubs/software/junos-security/junos-security10.2/junos-security-swconfig-security/topic-40777.html">http://www.juniper.net/techpubs/software/junos-security/junos-security10.2/junos-security-swconfig-security/topic-40777.html</a></div>
<div style><br></div><div style><br></div></div><div class="gmail_extra"><br><br><div class="gmail_quote">On Wed, May 11, 2011 at 7:53 AM, Pappas, AJ <span dir="ltr"><<a href="mailto:apappas@ottawaregional.org" target="_blank">apappas@ottawaregional.org</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div lang="EN-US" link="blue" vlink="purple"><div><p class="MsoNormal">I have a srx240. I have someone who has a vpn with us who wants to change from a static IP address on an ipsec tunnel to a FQDN. Is there any documentation on how to do this or if it is possible? He is able to provide the two ip’s to me that it will be coming from. This is for a failover from them. Two separate providers / ip’s.<u></u><u></u></p>
<p class="MsoNormal"><u></u> <u></u></p><p class="MsoNormal" style="margin-bottom:12.0pt"><b><span style="font-size:8.5pt;font-family:"Tahoma","sans-serif";color:gray">AJ Pappas </span></b><span style="font-size:8.5pt;font-family:"Tahoma","sans-serif";color:gray"> | Network Administrator </span><b><span style="font-size:10.0pt;font-family:"Arial Narrow","sans-serif";color:teal"><u></u><u></u></span></b></p>
<p class="MsoNormal" style="margin-bottom:12.0pt"><b><span style="font-size:10.0pt;font-family:"Arial Narrow","sans-serif";color:teal">Ottawa Regional Hospital & Healthcare Center</span></b><span style="font-size:8.5pt;font-family:"Tahoma","sans-serif";color:gray"><br>
</span><span style="font-size:6.0pt;font-family:"Tahoma","sans-serif";color:gray"><img width="200" height="91" src="cid:image001.jpg@01CC0FBF.69298280" alt="Description: Description: Description: logo"></span><b><i><span style="color:#1f497d"><u></u><u></u></span></i></b></p>
<p class="MsoNormal"><span style="font-size:6.0pt;font-family:"Tahoma","sans-serif";color:gray"><br></span><span style="font-size:8.5pt;font-family:"Tahoma","sans-serif";color:gray"><a href="http://www.ottawaregional.org/" target="_blank"><span style="color:gray">www.ottawaregional.org</span></a> | <a href="mailto:apappas@ottawaregional.org" target="_blank"><span style="color:gray">apappas@ottawaregional.org</span></a> <br>
<b>phone:</b> <a href="tel:815.431.5180" value="+18154315180" target="_blank">815.431.5180</a> | <b>mobile line: </b><a href="tel:815.993.8522" value="+18159938522" target="_blank">815.993.8522</a> <br>1100 East Norris Drive, Ottawa, IL 61350 USA<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:8.5pt;font-family:"Tahoma","sans-serif";color:gray"><u></u> <u></u></span></p><p class="MsoNormal"><b><span style="font-size:18.0pt;font-family:Webdings;color:green">P</span></b><span style="font-size:8.5pt;font-family:"Tahoma","sans-serif";color:gray"> </span><span style="font-size:8.5pt;font-family:"Tahoma","sans-serif";color:green">Please consider the environment before printing this e-mail.</span><span style="color:#1f497d"> </span><span style="color:#1f497d"><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Arial","sans-serif""><u></u> <u></u></span></p><p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Arial","sans-serif""><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:7.5pt;font-family:"Arial","sans-serif";color:gray">Confidentiality Notice: This e-mail may contain confidential information. The information is intended only for the use of the recipient named above. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or the taking of any action in reliance on the contents of this information, except its direct delivery to the intended recipient named above, is strictly prohibited. If you have received this e-mail in error, please notify the sender of this and also delete the e-mail from all systems this message is stored on.</span><span style="font-size:10.0pt;font-family:"Arial","sans-serif""><u></u><u></u></span></p>
<p class="MsoNormal"><u></u> <u></u></p></div></div><br>_______________________________________________<br>
juniper-nsp mailing list <a href="mailto:juniper-nsp@puck.nether.net">juniper-nsp@puck.nether.net</a><br>
<a href="https://puck.nether.net/mailman/listinfo/juniper-nsp" target="_blank">https://puck.nether.net/mailman/listinfo/juniper-nsp</a><br></blockquote></div><br></div>