Feature #46: DNS resolving for hosts in ike_cfg - strongSwan

Feature #46

DNS resolving for hosts in ike_cfg

Added by Martin Willi about 13 years ago. Updated almost 13 years ago.

Status:

Closed

Priority:

High

Assignee:

Martin Willi

Category:

charon

Target version:

4.2.4

Start date:

Due date:

Estimated time:

Resolution:

Description

The ike_cfg constructor should take strings, not hosts, to allow resolving of host names when an IKE_SA gets initiated. Otherwise non-stroke backends are not allowed to use DNS hostnames.

To support configuration lookup as responder, we need a DNS cache to look up configurations without resolving the hostname each time.

History

#1 Updated by Martin Willi almost 13 years ago

Status changed from New to Closed
Affected version set to fixed

Implemented in r4044. Issues:

We do no caching, so a responder configuration with DNS will cause a lot of DNS queries.
starter still resolves addresses

Also available in: Atom PDF

Project

General

Profile

strongSwan

Issues

Feature #46

DNS resolving for hosts in ike_cfg

History

#1 Updated by Martin Willi almost 13 years ago