Dynamic DNS (DDNS) can be used to locate, or establish VPN connections with, a firewall that gets its WAN IP address dynamically, perhaps using DHCP from the internet service provider.
Hurricane Electric example
If you register for a free domain at https://dns.he.net and delegate some domain to them, you can use their excellent, free, dynamic DNS service. Unlike Dyn and other similar companies, they don't offer/require sub-domains. Instead, use one of your own domains, and delegate a sub-domain.
- In the DNS of your primary domain, add ns1.he.net up to ns5.he.net as NS records for a new sub-domain called for example dyn.yourdomain.com
- Go to http://dns.he.net and create a free account
- Press "Add a new domain" and type the sub-domain your created in step 1
- Add a new A record to that domain, for example office.dyn.yourdomain.com and check "enable dynamic DNS"
- Press the icon in the "DDNS" column to generate a dynamic DNS password
There are a few ways to actually update the DNS record. The most simple way is to request the URL http://domain:firstname.lastname@example.org/nic/update?hostname=domain regularly from a cron job. One could also install the ddclient package using pkg_add. However, because it's so simple, I personally prefer to create a shell script.
Begin by enabling root access. Then create a file such as /cfg/dyndns.sh (for example using vi) with the content
domain="office.dyn.yourdomain.com" pass="secret" while true do newaddr=`ifconfig egress | grep inet | grep -v fe80:: | head -n 1 | cut -d' ' -f2` if [ "$newaddr" != "$oldaddr" ] then ftp -o /tmp/dyndns.log "http://$domain:$email@example.com/nic/update?hostname=$domain" res=`cat /tmp/dyndns.log` logger "Address changed from $oldaddr to $newaddr, updated dynamic DNS, response $res" fi oldaddr=$newaddr sleep 1 done
and make sure it's started during boot by running
# echo "sh /cfg/dyndns.sh &" >> /cfg/skel/rc.local