Hi!
Currently I'm planning a deployment of an XG system at a customer site. We have to do a "soft switch" from the old firewall to the new one, because of the remote access VPN, which are already deployed. For the most part I don't see any major problems but now I'm kind of stuck.
The customer has two WAN connections with one used for VPNs and one for other internet purposes and my plan was as follows:
1. Deploy the XG in a manner, that the current VPNs get to the old firewall via the "VPN-WAN"
2. Create new VPNs on the XG which connect to the other, secondary "Surfing-WAN"
3. When every VPN user is switched over to the new XG-VPN, I would switch them over to the "VPN-WAN"-line
But how can I do this without having to deploy a new configuration to the clients? My idea was to use a domain name instead of an IP address in the configuration and switch the listening interface from WAN2 to WAN1 at the same time I reroute the DNS entry to the matching address, but I see no way to insert a domain name to the configuration.
How do people with DynDNS do things like that? Do they manually edit the VPN configuration?
Best regards
Björn Vermöhlen
This thread was automatically locked due to age.