Project

General

Profile

Actions

Bug #11864

closed

OpenVPN stays bound to previous IP address after interface changes

Added by Marcos M over 3 years ago. Updated over 2 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Viktor Gurov
Category:
OpenVPN
Target version:
Start date:
04/28/2021
Due date:
% Done:

100%

Estimated time:
Plus Target Version:
22.05
Release Notes:
Default
Affected Version:
2.5.1
Affected Architecture:
All

Description

Setup:
OpenVPN listening on UDP IPv4 on a VIP or physical interface.

Steps to recreate:
  1. While OpenVPN is running, change the IP address on the interface
  2. Check Diagnostics / Sockets - the OpenVPN process is still listening on the old IP

Likely related:
https://redmine.pfsense.org/issues/9660

Actions #1

Updated by Marcos M over 3 years ago

  • Subject changed from OpenVPN stays binded to previous IP after its inteface changes to OpenVPN stays bound to previous IP after its inteface changes
Actions #2

Updated by Viktor Gurov over 3 years ago

Currently only DHCP, SNMP, Gateways Monitoring, RRD Graphing and Syslog services are restarted on interface changes.

We need to create a generic function that checks all system services: OpenVPN, IPsec, L2TP VPN, PPPoE Server, DNS Resolver, IGMP Proxy, uPnP and Captive Portal, to re-binds them to correct IP address.

Actions #3

Updated by Viktor Gurov over 3 years ago

We have to create a function `restart_interface_services($interface, $ipproto)` to restart all interface and IPv4/IPv6 related services and also use it to fix #3132

Actions #4

Updated by Viktor Gurov almost 3 years ago

fix:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/522

we need to create a separate TODO to check/restart all related services on interface change (+ IPsec, uPnP, Captive Portal etc.)

Actions #5

Updated by Jim Pingle almost 3 years ago

  • Status changed from New to Pull Request Review
  • Assignee set to Viktor Gurov
  • Target version set to CE-Next
  • Plus Target Version set to 22.05
Actions #6

Updated by Viktor Gurov almost 3 years ago

  • Status changed from Pull Request Review to Feedback
  • % Done changed from 0 to 100
Actions #7

Updated by Jim Pingle almost 3 years ago

  • Target version changed from CE-Next to 2.7.0
Actions #8

Updated by Marcos M almost 3 years ago

  • Status changed from Feedback to Resolved

Tested on 22.05.a.20220227.0100; working correctly now.

Actions #9

Updated by Jim Pingle over 2 years ago

  • Subject changed from OpenVPN stays bound to previous IP after its inteface changes to OpenVPN stays bound to previous IP address after interface changes

Updating subject for release notes.

Actions

Also available in: Atom PDF