[strongSwan] dns entries in config payload
Milton Lie
mlie at swbell.net
Tue Jan 3 21:44:26 CET 2012
Hi Tobias,
My client is configured with
leftsourceip=%config
It properly installs the virtual IP from the config payload, but the code
does not appear to process DNS entries? Still perusing the code.
Believe the code should be in src/libcharon/sa/ike_sa.c?
BR,
-Milton
________________________________
From: Tobias Brunner <tobias at strongswan.org>
To: Milton Lie <mlie at swbell.net>
Cc: Users at lists.strongswan.org
Sent: Tue, January 3, 2012 2:12:47 PM
Subject: Re: dns entries in config payload
Hi Milton,
> Does libcharon process dns entries in the IKEv2 config payload?
> I defined following in /etc/strongswan.conf
>
> charon {
> dns1 = 8.8.8.8
> dns2 = 8.8.4.4
> }
>
> but the client does not appear to change local dns configuration.
The IKEv2 daemon charon currently only supports the CFG_REQUEST and
CFG_REPLY pair of configuration payloads. So in order for the gateway
to send config payloads to the client the latter has to request a list
of attributes. The only way to make charon as a client do so is by
having it request an internal IP address from the gateway. That is, the
client has to be configured with leftsourceip=%config.
Regards,
Tobias
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20120103/017fa8af/attachment.html>
More information about the Users
mailing list