Project

General

Profile

Actions
Copy link

Bug #11296

open

Static route targets may still reachable via default route when the gateway they should route through is down

Added by Viktor Gurov 6 months ago. Updated about 2 months ago.

Status:
New
Priority:
Normal
Assignee:
Viktor Gurov
Category:
Routing
Target version:
2.6.0
Start date:
01/23/2021
Due date:
% Done:

100%

Estimated time:
Plus Target Version:
21.09
Release Notes:
Default
Affected Version:
2.4.5-p1
Affected Architecture:

Description

https://forum.netgate.com/topic/160103/static-routes-not-as-expected:
When WAN gateway is down, I can still access/ping stuff that is set "static route" thru the primary WAN.

`/etc/rc.gateway_alarm` must delete static routes entries for that gateway

same issue on 2.5.0.a.20210121.2350
see also #9969 #10001

Related issues

Related to Regression #11986: Static routes are not installing properly on IPsec VTI linksDuplicate06/02/2021

Actions
Actions
Copy link
 #2

Updated by Jim Pingle 6 months ago

  • Status changed from New to Pull Request Review
  • Target version set to CE-Next
Actions
Copy link
 #3

Updated by Renato Botelho 5 months ago

  • Status changed from Pull Request Review to Feedback
  • Assignee set to Viktor Gurov

PR has been merged. Thanks!

Actions
Copy link
 #4

Updated by Viktor Gurov 5 months ago

  • % Done changed from 0 to 100
Actions
Copy link
 #5

Updated by Alhusein Zawi 5 months ago

  • Status changed from Feedback to Resolved

Fixed.

If WAN GW is down I cannot ping even if there was static route.

2.5.0-RELEASE (amd64)
built on Tue Feb 16 08:56:29 EST 2021
FreeBSD 12.2-STABLE

Actions
Copy link
 #6

Updated by Jim Pingle 5 months ago

  • Target version changed from CE-Next to 2.6.0
Actions
Copy link
 #7

Updated by Jim Pingle 3 months ago

  • Plus Target Version set to 21.05

Already present on 21.05 builds.

Actions
Copy link
 #8

Updated by Jim Pingle 3 months ago

  • Subject changed from When WAN gateway is down, I can still access/ping stuff that is set "static route" thru the primary WAN to Static route targets may still reachable via default route when the gateway they should route through is down

Updating subject for release notes.

Actions
Copy link
 #9

Updated by Jim Pingle 2 months ago

  • Target version changed from 2.6.0 to 2.5.2
Actions
Copy link
 #10

Updated by Jim Pingle about 2 months ago

  • Status changed from Resolved to New
  • Target version changed from 2.5.2 to 2.6.0
  • Plus Target Version changed from 21.05 to 21.09

Per Jim T, reverted this from 2.6.0 and 2.5.2. It appears to be causing some unintended side effects.

Can revisit a different approach, or perhaps making it optional and off by default, for the next release.

Actions
Copy link
 #11

Updated by Jim Pingle about 2 months ago

  • Status changed from New to Feedback
Actions
Copy link
 #12

Updated by Jim Pingle about 2 months ago

  • Status changed from Feedback to New
Actions
Copy link
 #13

Updated by Jim Pingle 20 days ago

  • Related to Regression #11986: Static routes are not installing properly on IPsec VTI links added
Actions
Copy link

Also available in: Atom PDF