[Openswan Users] Centos Resolv.conf and Openswan

Mitsuo Yazawa mitsuoyazawa at gmail.com
Fri Apr 20 12:11:00 EDT 2012 

Hi Willie,

Thanks for answering, Openswan is working perfectly.
Here is the result.

dig www.google.com @10.90.1.11
	Didn't work, but if I add an option...

dig -b 10.90.48.10 www.google.com @10.90.1.11
	Did work (10.90.48.10 is my ipsec IP assigned to tap0) (10.90.1.11
is my dns server at the other side) 

Dig www.google.com @8.8.8.8
	Also worked normally.

Thanks
Alex

-----Original Message-----
From: users-bounces at lists.openswan.org
[mailto:users-bounces at lists.openswan.org] On Behalf Of Willie Gillespie
Sent: Friday, April 20, 2012 8:22 AM
To: users at lists.openswan.org
Subject: Re: [Openswan Users] Centos Resolv.conf and Openswan

It's doesn't really sound like an Openswan problem, nor do I think
interface-order will fix anything for you.

Double-check that you can reach both DNS resolvers properly.

dig www.example.com @8.8.8.8
dig www.example.com @10.1.1.11

Make sure they both return the correct IP address for www.example.com.

Willie

On 04/18/2012 11:28 AM, Mitsuo Yazawa wrote:
> Hi Openswan,
>
> I successfully install an Openswan IPSec solution.
>
> Lets assume I have 2 interfaces.
>
> Eth0 (public IP), Tap0 (virtual IP for IPSec)
>
> All of my software, scripts, etc. are working correctly inside the 
> IPSec tunnel.
>
> When I resolv DNS 8.8.8.8 it works perfectly (it goes to Eth0 
> Interface)
>
> But if I do resolv 10.1.1.11(DNS server, in the right-subnet of the 
> IPSec tunnel). It tries to DNS from Eth0, and not tap0.
>
> I know for Debian distros there's a way to configure for this to work, 
> configuring /etc/resolvconf/interface-order.
>
> Unfortunately I really need to use CentOS.
>
> I really appreciate the help.
>
> Thanks
>
> Mitsuo
>
>
>
> _______________________________________________
> Users at lists.openswan.org
> https://lists.openswan.org/mailman/listinfo/users
> Micropayments: 
> https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
> Building and Integrating Virtual Private Networks with Openswan:
> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=2831
> 55
_______________________________________________
Users at lists.openswan.org
https://lists.openswan.org/mailman/listinfo/users
Micropayments: https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
Building and Integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155

More information about the Users mailing list