[NEBULA] zero touch vpn

FrankIversen
Posts: 92
Ally Member





will zero touch vpn work when the customers have dynamic wan ips?
0
Comments
-
0
-
If your NSG is not behind the NAT, Site-to-Site VPN with dynamic peer is supported by NSG for Nebula-to-Nebula VPN topology now. When NSG public IP is changed, VPN tunnel will disconnected and re-connected automatically. (Because if your NSG is behind the NAT, you need to set NAT-traversal on NCC.)
For Nebula-to-nonNebula VPN topology, if your nonNebula device is set up with a static IP and you can set it as Server Role, and Nebula device which is not behind the NAT run with DHCP, then when NSG public IP is changed, VPN tunnel will also disconnected and re-connected automatically.
0 -
nebua-to-nebula, not behind nat. (the nsg will be the first firewall).
Thanks.0 -
@FrankIversen
You are running on zero touch VPN.
Once NSG public IP is changed, VPN tunnel will disconnected and re-connected automatically.
0
Categories
- All Categories
- 187 Beta Program
- 1.7K Nebula
- 90 Nebula Ideas
- 63 Nebula Status and Incidents
- 4.7K Security
- 236 Security Ideas
- 1.1K Switch
- 51 Switch Ideas
- 917 WirelessLAN
- 27 WLAN Ideas
- 5.4K Consumer Product
- 173 Service & License
- 296 News and Release
- 65 Security Advisories
- 14 Education Center
- 1K FAQ
- 450 Nebula FAQ
- 256 Security FAQ
- 100 Switch FAQ
- 115 WirelessLAN FAQ
- 22 Consumer Product FAQ
- 67 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 68 About Community
- 52 Security Highlight