Allow a VPN device to be configured using a domain name instead of an IP address
Please allow the VPN device when creating a site-to-site connection to be setup using domain name instead of an IP address.
This will allow sites with dynamics IPs to connect and also sites with dual-wan to failover to the secondary line without requiring expensive dual-circuit lines.
IPsec tunnels can’t be setup with a DNS name as the destination. It must be an IP Address.
Lawrence Dwight commented
Perhaps I was unclear. I meant a FQDN, not a windows active directory domain. If you're saying IPSec does not support this then why do many VPN devices support exactly that? A DNS server can return the public IP of the gateway and then connect. I guess the other option would be to change the IP via the GUI (manual and slow) or via API (requires some coding work on users part).