Site to Site VPN using DNS name

servnj · ‎12-15-2008

I have 5 ASA5505 connecting to a ASA5510. When creating the crypto map and tunnel-group on the ASA 5505's can I reference a DNS name instead of an IP address?

John Blakley · ‎12-16-2008

Yes you can. You'll need to set up a DNS server group with your dns servers, and you'll need to configure domain lookup.

DNS server-group MYDNS

name-server 4.2.2.1

name-server 4.2.2.2

domain-name whatever.com

domain-lookup outside

In your crypto map:

crypto map 1 set peer my.vpn.com

Should work.

HTH,

John

HTH, John *** Please rate all useful posts ***

wei.hu · ‎04-02-2009

Hi,

Did John's response work for you? I have the same question as you.

Thanks,

Wei