OPNsense Forum

Archive => 17.7 Legacy Series => Topic started by: xayide on January 15, 2018, 07:05:50 pm

Title: Advanced VPN settings for Mac OS X
Post by: xayide on January 15, 2018, 07:05:50 pm: Is it possible to somehow specify options not visible in the gui?
Like this....

https://wiki.strongswan.org/projects/strongswan/wiki/AppleClients

Split-DNS can be implemented for iOS 10.3.1 and newer with the INTERNAL_DNS_DOMAIN attribute and the INTERNAL_IP4_DNS or INTERNAL_IP6_DNS attributes.
Support for MAC OSX isn't known at the moment.
For older versions, all traffic has to be tunneled (full-tunnel).
However, the latter doesn't work for any application, because none honor scoped DNS servers. A magic number for the INTERNAL_DNS_DOMAIN has been assigned by IANA and is supported by iOS 10.3.1 and newer.
Alternatively, the the DNS domains can be supplied in the client configuration.

Assigning DNS servers without full-tunnel can only be achieved by sending an INTERNAL_DNS_DOMAIN to the responder (for iOS 10.3.1 and nwer) or
by supplying it in the client configuration.

SMF 2.0.19 | SMF © 2021, Simple Machines
Privacy Policy