[strongSwan] regarding dns resolution

[Paton, Andy]

Rakesh,

I think you would benefit from looking into the MOBIKE capabilities of Strongswan. This is there to cater with the change of IP address and re-homing the connection.

Regards,

Andy Paton - Bsc. (Hons), MBCS
Innovation Engineer

andy.paton at hp.com<mailto:andy.paton at hp.com>


[HP]<http://www.hp.com/>

From: users-bounces+andy.paton=hp.com at lists.strongswan.org [mailto:users-bounces+andy.paton=hp.com at lists.strongswan.org] On Behalf Of Rakesh Bansod
Sent: 04 September 2013 13:15
To: users at lists.strongswan.org
Subject: [strongSwan] regarding dns resolution

hi,
I want to know how the dns is resolved in strongswan.
if i give right=rakesh.com<http://rakesh.com> and for this a particular ip is written in /etc/hosts, so the connection goes up easily.
But in logs it shows the ip while connecting this means that somewhere inside the name is replaced by ip.
what actually happen???

also i made other side "rakesh.com<http://rakesh.com>" to drop esp packets and changed the ip address of "rakesh.com<http://rakesh.com>" in /etc/hosts while live connection.
when i ping "rakesh.bansod" it tries to recoonect to "rakesh.com<http://rakesh.com>" because of dpdaction=restart.
but problem is that it didn't knew that the ip is changed and still tries with the same ip.
also i tried ipsec update, but it didn't worked.
what should i do if i now the dns of other party which keeps on changing its ip address then how to make connection in such case.
please help.

thank you.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20130904/105454fb/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 3690 bytes
Desc: image001.png
URL: <http://lists.strongswan.org/pipermail/users/attachments/20130904/105454fb/attachment.png>