** Description changed: Ubuntu Version: 18.04.2 LTS (bionic beaver) Package: strongswan 5.6.2-1ubuntu2.4 - Bringing up an IKEv2 EAP-TLS connection fails to set the DNS so hosts - that are only available via the VPN are not accessible. + Description: + Bringing up an IKEv2 EAP-TLS connection fails to set the DNS so hosts that are only available via the VPN are not accessible. It appears that this was reported in https://bugs.launchpad.net/ubuntu/+source/strongswan/+bug/1772705 but fixed for comsic and not bionic. I do not appear to be able to re-open the original bug, hence creating a new one here. + + Environment: + Installed Ubuntu 18.04.2 LTS in GNOME Boxes. + apt install strongswan + apt install libcharon-extra-plugins + + /etc/ipsec.conf : + # ipsec.conf - strongSwan IPsec configuration file + config setup + charondebug="ike 5, knl 5, cfg 5, net 5, esp 5, dmn 5, mgr 5" + + conn %default + keyexchange=ikev2 + left=%any + leftsubnet=0.0.0.0/0 + leftcert=machine.sha256.pem + leftid=machine.company.com + leftauth=eap-tls + leftsourceip=%config4,%config6 + right=gateway.company.com + rightid=gateway.company.com + leftdns=127.0.1.1 + rightauth=any + auto=add + + conn company + rightsubnet=192.168.88.0/25,192.168.100.0/24,10.10.10.0/24
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1819159 Title: IKEv2 VPN connections fail to use DNS servers provided by the server (bionic) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/strongswan/+bug/1819159/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs