Oldřich Jedlička

Just to describe my goals, not the solution. Simply speaking - I need to connect two VPN endpoints. I have one fixed VPN connection (always on) and one for roadwarrior....

> > The part of solution is to write custom updown scripts to (1) configure DNS for roadwarrior from the fixed VPN (the fixed VPN updown script) > > Configure...

> > The `resolve` plugin is also able to use `resolveconf` tool, so maybe it is able to set all DNS servers in that case. > > Might work better....

> > Also the `resolve` plugin in default-priority configuration stores just one DNS server into resolv.conf - only the last one. > > Hm, no idea why that would be...

``` #> docker compose logs | grep DNS\\\|resolv strongswan | 00[LIB] plugin 'resolve': loaded successfully strongswan | 00[LIB] loading feature CUSTOM:resolve in plugin 'resolve' strongswan | 00[LIB] loaded plugins: charon...

To avoid confusion - I am also running `resolvconf -l` after the connection is terminated - separately: ``` #> docker compose exec -- strongswan resolvconf -l # resolv.conf from lo.inet.ipsec.x.y.z.195...

> > > > The part of solution is to write custom updown scripts to (1) configure DNS for roadwarrior from the fixed VPN (the fixed VPN updown script) >...

> > The first three resolv.conf lines are from `resolvconf -l` run from the `updown` script during `--initiate` call, second one is during the `--terminate` call. > > What exactly...

> > I just use `swanctl --initiate fixed_vpn` and `swanctl --terminate fixed_vpn` from the command line. > > Are you sure you didn't also specify `--child` or `-c` for both?...

> > and one unused function `print_sourceline`. > > By the way, didn't you run into the issue that `esc()` was unused after removing `print_sourceline()`? (I've added an ifdef there...