** Description changed:

  Ubuntu Version: 18.04.2 LTS (bionic beaver)
  Package: strongswan 5.6.2-1ubuntu2.4
  
- Bringing up an IKEv2 EAP-TLS connection fails to set the DNS so hosts
- that are only available via the VPN are not accessible.
+ Description:
+ Bringing up an IKEv2 EAP-TLS connection fails to set the DNS so hosts that 
are only available via the VPN are not accessible.
  
  It appears that this was reported in 
https://bugs.launchpad.net/ubuntu/+source/strongswan/+bug/1772705 but fixed for 
comsic and not bionic.
  I do not appear to be able to re-open the original bug, hence creating a new 
one here.
+ 
+ Environment:
+ Installed Ubuntu 18.04.2 LTS in GNOME Boxes.
+ apt install strongswan
+ apt install libcharon-extra-plugins
+ 
+ /etc/ipsec.conf :
+ # ipsec.conf - strongSwan IPsec configuration file
+ config setup
+     charondebug="ike 5, knl 5, cfg 5, net 5, esp 5, dmn 5,  mgr 5"
+ 
+ conn %default
+     keyexchange=ikev2
+     left=%any
+     leftsubnet=0.0.0.0/0
+     leftcert=machine.sha256.pem
+     leftid=machine.company.com
+     leftauth=eap-tls
+     leftsourceip=%config4,%config6
+     right=gateway.company.com
+     rightid=gateway.company.com
+     leftdns=127.0.1.1
+     rightauth=any
+     auto=add
+ 
+ conn company
+      rightsubnet=192.168.88.0/25,192.168.100.0/24,10.10.10.0/24

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1819159

Title:
  IKEv2 VPN connections fail to use DNS servers provided by the server
  (bionic)

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/strongswan/+bug/1819159/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to