Bug #6578: Filter reload hangs with IPsec hostnames that don't resolve configured - pfSense - pfSense bugtracker

Actions

Copy link

Bug #6578

closed

Filter reload hangs with IPsec hostnames that don't resolve configured

Added by Chris Buechler almost 8 years ago. Updated about 6 years ago.

Status:

Closed

Priority:

High

Assignee:

Category:

Rules / NAT

Target version:

Start date:

07/05/2016

Due date:

% Done:

Estimated time:

Plus Target Version:

Release Notes:

Affected Version:

All

Affected Architecture:

Description

If you have IPsec P1s configured with a FQDN as the remote endpoint, and those don't resolve, the filter reload process (among potentially other things) is slowed down considerably. That uses the resolve_retry function, which tries gethostbyname 5 times with a 1 second sleep in between. It ought to use something smarter than gethostbyname, so upon an NXDOMAIN or similar response, it just continues on rather than retrying and delaying needlessly.

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense

Custom queries

Bug #6578

Filter reload hangs with IPsec hostnames that don't resolve configured

Updated by Chris Buechler almost 8 years ago

Updated by Jim Thompson about 7 years ago

Updated by Anonymous almost 7 years ago

Updated by Jim Pingle over 6 years ago

Updated by Jim Pingle over 6 years ago

Updated by Anonymous over 6 years ago

Updated by Jim Pingle about 6 years ago