Hi,
The commands has options only for IP Address and Hostname
!
crypto isakmp key string [address|hostname]
!
crypto map map-name isakmp authorization list list-name
set peer [address|hostname]
How often you change the router IP Address? Unless you keep restructuring your network or keep changing ISP, you will keep on changing IP Address.
If FQDN is allowed, there are some issues;
- An attacker (with prior knowledge of your VNP setup) can change the 'A' record in the DNS to point to their IP Address.
- The router should not lose connection to a DNS to prevent disconnection of VPN peer.
Regards,
Dandy