Previously, an IPv6 split tunnel with a /128 request would result in a
default tunnel, rather than a specific route. Correctly set the default
route if we request a /0.
If `which ip` returns something on a non-Linux OS, it's an unrelated
tool that won't work for routing configuration; don't try to set IPROUTE
on another OS. This should fix the macOS issue discovered at:
<https://github.com/dlenski/openconnect/issues/132#issuecomment-470475009>
Some vpn clients pass multiple domains for DNS search scope, which
requires that we use search rather than domain. The generic path was
already using search, so just switch the resolvconf path to also use
search.
In a container, /etc/nsswitch.conf might not exist.
Silence the error grep: /etc/nsswitch.conf: No such file or directory
Inside a container, running 'ip route flush cache' can spam with
"ip: can't open '/proc/sys/net/ipv4/route/flush': Read-only file system"
Hide that the error output for that command.
- Support routes with different devs and gateways
- Revive route cleanup for /sbin/route code
- Support split-exclude rules from Pulse gateway
- Check if resolved is enabled in nsswitch.conf prior to using it
- Add support for systemd-resolved
From Kai-Uwe Eckhardt in PR 51576.
Changes:
rewrite resolv.conf parsing master
avoid multiple "domain" entries in resolv.conf
fix comment
OSX - Fix split DNS when doing split routing
Enable resolvconf on FreeBSD too
for all pkgsrc dir/file ownership rules. Fixes unprivileged
user/group names from leaking into binary packages, manifest as
non-fatal chown/chgrp failure messages at pkg_add time.
Bump respective packages' PKGREVISION.
by pdtafti, hfath, asau, jakllsch, and keckhardt.
This package provides David Woodhouse's modified vpnc config script
with IPv6 support and bug fixes. It can be used in conjunction
with net/vpnc and/or net/openconnect.
