[strongSwan] dhcp plugin using CN or FQDN as the client host name?
Harald Dunkel
harald.dunkel at aixigo.de
Tue Mar 6 10:19:19 CET 2018
Hi folks,
Setup: road warrior, strongswan 5.6.2 on both peers, the gateway
runs dnsmasq to manage an IP address pool and DNS.
Problem: charon-nm seems to forwards the DN from the certificate
as the identifier. Apparently charon on the peer seems to ignore
the FQDN from the certificate's DNS entry in this case, and the
dhcp plugin does not set a client host name in the DHCP request.
An iphone (with a client certificate created using the same
template) selects the DNS entry from the v3 extensions as the
identifier, charon on the peer accepts it and the dhcp plugin
sets the client host name accordingly.
Question is, how can I tell charon's dhcp plugin to forward either
the FQDN or the CN from the DN entry in the dhcp request?
Every helpful comment is highly appreciated
Harri
More information about the Users
mailing list