[Openswan Users] Centos Resolv.conf and Openswan
mitsuoyazawa at gmail.com
Fri Apr 20 12:11:00 EDT 2012
Thanks for answering, Openswan is working perfectly.
Here is the result.
dig www.google.com @10.90.1.11
Didn't work, but if I add an option...
dig -b 10.90.48.10 www.google.com @10.90.1.11
Did work (10.90.48.10 is my ipsec IP assigned to tap0) (10.90.1.11
is my dns server at the other side)
Dig www.google.com @188.8.131.52
Also worked normally.
From: users-bounces at lists.openswan.org
[mailto:users-bounces at lists.openswan.org] On Behalf Of Willie Gillespie
Sent: Friday, April 20, 2012 8:22 AM
To: users at lists.openswan.org
Subject: Re: [Openswan Users] Centos Resolv.conf and Openswan
It's doesn't really sound like an Openswan problem, nor do I think
interface-order will fix anything for you.
Double-check that you can reach both DNS resolvers properly.
dig www.example.com @184.108.40.206
dig www.example.com @10.1.1.11
Make sure they both return the correct IP address for www.example.com.
On 04/18/2012 11:28 AM, Mitsuo Yazawa wrote:
> Hi Openswan,
> I successfully install an Openswan IPSec solution.
> Lets assume I have 2 interfaces.
> Eth0 (public IP), Tap0 (virtual IP for IPSec)
> All of my software, scripts, etc. are working correctly inside the
> IPSec tunnel.
> When I resolv DNS 220.127.116.11 it works perfectly (it goes to Eth0
> But if I do resolv 10.1.1.11(DNS server, in the right-subnet of the
> IPSec tunnel). It tries to DNS from Eth0, and not tap0.
> I know for Debian distros there's a way to configure for this to work,
> configuring /etc/resolvconf/interface-order.
> Unfortunately I really need to use CentOS.
> I really appreciate the help.
> Users at lists.openswan.org
> Building and Integrating Virtual Private Networks with Openswan:
Users at lists.openswan.org
Building and Integrating Virtual Private Networks with Openswan:
More information about the Users