Updating vpnc-script for openconnect and unbound

Paul Wouters paul at cypherpunks.ca
Mon Oct 22 16:42:16 UTC 2012

On Sun, 21 Oct 2012, Erinn Looney-Triggs wrote:

> I haven't been able to get a lot of traction with this, but I figured a
> shot at this mailing list might help.
> I have written a patch against the Fedora 18 version of vpnc-script to
> allow it to detect that unbound is running and to set forwarders
> appropriately for resolving internal IPs after a VPN connection is made.
> That patch is attached.

Great! Thank you!

> This is very similar to work that was done on openswan here:
> http://osdir.com/ml/fedora-devel-list/2012-06/msg02650.html

Note your attached patch is based on an older version of the openswan
patch. You should add "unbound-control flush_requestlist" as well when
the tunnel goes up or down, so the outstanding queries are also dropped.

> There is also a bug open for this here:
> https://bugzilla.redhat.com/show_bug.cgi?id=865092

Added my comment there as well.


More information about the devel mailing list