Re: ask - IPSEC without IP Public for internet connection
Yes that doable. You want dynamic VPN. Since the address is private
you want at branches
NAT-T with keepalive for UDP.4500
At the main-ofc,
it would be a responder only.
you can run ospf over the interfaces in route-mode
PCNSE, NSE , Forcepoint , StrongSwan Specialist