[strongSwan] Nameservers over ikev2
Martin Willi
martin at strongswan.org
Fri Jul 1 13:55:16 CEST 2011
Hi Julian,
> is it possible to set the dns servers that are pushed to the client
> seperatly for each conn entry in ipsec.conf?
Using the attr plugin and the associated strongswan.conf options, no,
currently not. These are always global.
The more advanced attr-sql plugin can define per-pool or even
per-identity attributes. You can define a pool name per connection using
the rightsourceip=%poolname option. If you enable the attr-sql backend
[1], you can create address pools and associated attributes for that
pool using the "ipsec pool" command.
Regards
Martin
[1]http://wiki.strongswan.org/projects/strongswan/wiki/AttrSQL
More information about the Users
mailing list