Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

SSL VPN Use Static IP


We have an application that requires reverse DNS lookup.

When users are on SSL VPN they are getting a new IP address via dhcp on the firewall frequently and the Ip Address does not get a PTR record created in the reverse lookup.

I've seen a few questions with similar situations but I want to be sure that my thoughts after seeing those will be workable resolution.

Seems that using static IPs on the SSL VPN is our best/easiest option at this point as we don't have a lot of remote users. Approximately 25-30 on a busy day.

My questions are these:

Do I assume correctly that DHCP will still work after turning on the static switch? (so, we can build this out after flipping the switch), particularly because some of the leased addresses are already within the static range that the firewall is giving me as an option.

Then all I should have to do is create a matching Reverse lookup ptr that matches the static IP assigned to the user?

Thanks in advance.

Added TAGs
[edited by: emmosophos at 5:19 PM (GMT -7) on 18 Jun 2024]