[strongSwan] SWAN leases runtime API
Tobias Brunner
tobias at strongswan.org
Mon Mar 20 14:00:58 CET 2017
Hi Victor,
> We enabled sql plugin, compiled the sources and found out that leases
> are stored in DB upon release,
>
> as a history, not as runtime as it presented via CLI
What do you mean?
Also, virtual IPs are actually provided by the attr-sql plugin not the
sql plugin (it's not necessary to use the sql plugin, configs in
ipsec.conf or swanctl.conf may refer to pools provided by the attr-sql
plugin).
> - How can we get connection info upon tunnel establishment? (except CLI,
> DB? any API?)
What connection info? Did you already have a look at the VICI protocol [1]?
> - Can we assure multiple VPN servers configured to work with the same
> pool in common DB will assign unique virtual IPs?
Yes, if they use the same DB the leases will be unique.
Regards,
Tobias
[1] https://wiki.strongswan.org/projects/strongswan/wiki/Vici
More information about the Users
mailing list