Bug #10351
closed
Saving IPSEC connection breaks FRR BGP on VTI interfaces
100%
Description
I believe this is related to Bug #9668.
When editing a Phase 1 IPSEC connection and clicking save and then apply, the FRR BGP on VTI interfaces will break.
I've applied the patch ID 7ba8d654582d452103c78faf63bacd4385177537 to the system and it does not fix the problem.
If I manually run /etc/rc.newipsecdns from the CLI while in a failed state, the FRR BGP will eventually restart, such that I believe a callback to ipsec_reload_package_hook() is needed somewhere else.
Updated by Steven Brown over 4 years ago
I should have made it clearer that /etc/rc.newipsecdns is run post-patch.
Updated by Steven Brown over 4 years ago
Created pull request: https://github.com/pfsense/pfsense/pull/4242
Updated by Jim Pingle over 4 years ago
- Status changed from New to Pull Request Review
- Target version set to 2.5.0
Updated by Renato Botelho over 4 years ago
- Status changed from Pull Request Review to Feedback
- Assignee set to Renato Botelho
- % Done changed from 0 to 100
PR has been merged. Thanks!
Updated by Jim Pingle over 4 years ago
- Target version changed from 2.5.0 to 2.4.5-p1
Updated by Jim Pingle over 4 years ago
- Status changed from Feedback to Resolved
This appears to be doing as much as it can. There may be other similar/related issues but this specific case appears to be OK.
For the other problems, they should be opened as separate issues if they persist.