[Swan] DHCP overwrites resolv.conf

Ian Willis ian at checksum.net.au
Mon Jan 18 02:33:27 UTC 2021


Hi All,

I'm currently using centos8 for some mobile users.

The setup is relies on the fact that ipsec starts on boot and connects
to a remote freeipa server allowing kerberos auth for login and DNS.
The ipsec setup uses a rsa keys for host auth.

It works reasonably well except that when the dhcp lease expires
network manager overwrites /etc/resol.conf. What is the best way to
manage this situation. 
As a kludge I've set ipsec to restart every 5 minutes via a cron job
which works some of the time.

Any thoughts appreciated.

Kind Regards

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.libreswan.org/pipermail/swan/attachments/20210118/3f2ade6e/attachment.html>


More information about the Swan mailing list