Project

General

Profile

resolve plugin » History » Version 3

Noel Kuntze, 29.09.2016 21:28
pluto is dead.

1 1 Tobias Brunner
h1. resolve plugin
2 1 Tobias Brunner
3 2 Tobias Brunner
The _resolve_ plugin writes name servers to resolv.conf. It is enabled by default.
4 1 Tobias Brunner
5 1 Tobias Brunner
h2. Behavior
6 1 Tobias Brunner
7 2 Tobias Brunner
Name servers received via configuration payloads (IKEv2) or via Mode Config (IKEv1) are added to /etc/resolv.conf or installed via resolvconf(8). When the connection goes down name servers are automatically removed again.
8 1 Tobias Brunner
9 1 Tobias Brunner
h2. Configuration
10 1 Tobias Brunner
11 1 Tobias Brunner
The plugin is configured using the following [[StrongswanConf|strongswan.conf]] options.
12 1 Tobias Brunner
13 1 Tobias Brunner
|Key|Default|Description|
14 2 Tobias Brunner
|charon.plugins.resolve.file|/etc/resolv.conf|File where name servers are written to.|
15 1 Tobias Brunner
|charon.plugins.resolve.resolv_conf.iface_prefix|lo.inet.ipsec.|Prefix to be used for interface names provided to resolvconf(8).|
16 1 Tobias Brunner
17 1 Tobias Brunner
h3. Support for resolvconf(8)
18 1 Tobias Brunner
19 2 Tobias Brunner
Since version [[4.6.3]] strongSwan provides support for installing name servers via the "resolvconf":http://en.wikipedia.org/wiki/Resolvconf framework.  If resolvconf is installed the plugin automatically invokes it appropriately instead of modifying resolv.conf directly.
20 1 Tobias Brunner
21 2 Tobias Brunner
The interface names provided to resolvconf are built by adding the IP address of the name server to the prefix configured in strongswan.conf (or the default). The result must be a valid interface name according to the rules specified by resolvconf(8). Additionally, the resulting interface name should have a high priority when the order defined in interface-order(5) is applied.