[strongSwan] SWAN leases runtime API
Victor Voronkov
VVoronkov at trustwave.com
Tue Mar 21 10:27:53 CET 2017
I performed a test from 2 android phones and checked the DB content. Identities were recorded upon new connection, while leased IP was recorded only upon connection close. How can I configure the SWAN to store lease upon new connection too? That exactly the reason I wanted to use common DB for scalable array of VPN servers in AWS.
-----Original Message-----
From: Tobias Brunner [mailto:tobias at strongswan.org]
Sent: Tuesday, March 21, 2017 11:10 AM
To: Victor Voronkov <VVoronkov at trustwave.com>; Noel Kuntze <noel at familie-kuntze.de>; users at lists.strongswan.org
Subject: Re: [strongSwan] SWAN leases runtime API
Hi Victor,
> From your answers I assume that using attr-sql plugin with
> lease_history property can't help us to identify online connection by
> accessing the DB and querying it by virtual IP assigned, before the
> lease is released.
Why not?
> Is there any way to get online leases from the daemon except CLI? (we
> need an identity info for external service)
All the `ipsec pool` utility does is querying the database, so you could also just do that directly.
Regards,
Tobias
More information about the Users
mailing list