Project

General

Profile

Actions
Copy link

Bug #13188

closed

states reset on all interfaces

Added by Alex Kolesnik almost 3 years ago. Updated almost 3 years ago.

Status:
Duplicate
Priority:
Normal
Assignee:
-
Category:
Gateways
Target version:
-
Start date:
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:
Default
Affected Version:
Affected Architecture:
All

Description

Hi,

When a gateway goes down (in my case it's IPSEC VTI gateway) and "Flush all states when a gateway goes down" setting is enabled, pfsense flushes states on all interfaces and restarts all tunnels (even those which didn't use that gateway):
May 20 13:56:47 vpn rc.gateway_alarm27900: >>> Gateway alarm: IPSEC_TEST_VTIV4 (Addr:10.6.106.2 Alarm:1 RTT:124.280ms RTTsd:1.014ms Loss:21%)
May 20 13:56:47 vpn check_reload_status395: updating dyndns IPSEC_TEST_VTIV4
May 20 13:56:47 vpn check_reload_status395: Restarting IPsec tunnels
May 20 13:56:47 vpn check_reload_status395: Restarting OpenVPN tunnels/interfaces
May 20 13:56:47 vpn check_reload_status395: Reloading filter
May 20 13:56:48 vpn php-fpm66369: /rc.openvpn: OpenVPN: One or more OpenVPN tunnel endpoints may have changed its IP. Reloading endpoints that may use IPSEC_TEST_VTIV4.

It would be great to reset states only on the affected interface and don't restart services that don't use that interface.

Actions
Copy link
 #1

Updated by Jim Pingle almost 3 years ago

  • Status changed from New to Duplicate
  • Affected Version deleted (2.6.0)

Already done on Plus 22.05/CE 2.7.0 snapshots. See #12092, #8555, and other related similar issues.

Actions
Copy link
 #2

Updated by Alex Kolesnik almost 3 years ago

Awesome, thank you! And sorry for posting a duplicate - I did try to search before.

Actions
Copy link

Also available in: Atom PDF