[strongSwan] Strongswan network manager plugin 1.5.2 on linux doesn't clear resolv.conf on disconnection
Tobias Brunner
tobias at strongswan.org
Mon May 2 12:15:30 CEST 2022
Hi Ettore,
> Everything works great but on diconnect the resolv.conf file remains
> populated with dns adresses obtained from server on connection.
> What can I do?
The NetworkManager backend (charon-nm), which is independent of the GUI
plugin whose version you reference, does not load the resolve plugin, by
default (i.e. it won't modify resolv.conf directly or via resolvconf).
Make sure you didn't load it manually somehow [1]. Also, even if it's
loaded, the DNS servers should get removed once the IKE_SA is terminated
(check the log).
If the plugin is not loaded (i.e. the DNS servers are not installed by
charon-nm), the file might get modified by NM (or some other component),
so check for errors in other logs and for existing bug reports for these
components.
Regards,
Tobias
[1] https://docs.strongswan.org/docs/5.9/plugins/pluginLoad.html
More information about the Users
mailing list