pfSense » pfSense Packages

Spike R.D. wrote:

Hi,

FRR is currently started before completing Wireguard tunnels initialization:

[FRR startup]
2023-06-17 18:48:30 ,754 INFO: Called via "Namespace(input=None, reload=True, test=False, debug=False, log_level='info', stdout=False, pathspace=None, filename='/var/etc/frr/frr.conf', overwrite=False, bindir='/usr/local/bin', confdir='/var/etc/frr', rundir='/var/run/frr', vty_socket=None, daemon='')"

[Wireguard initialization]
Jun 17 18:48:31 fw1 kernel: wg2: changing name to 'tun_wg2'
Jun 17 18:48:31 fw1 kernel: tun_wg2: link state changed to UP

Note that Wireguard starts 1 second after FRR, but in FRR there are already references to the renamed interfaces, which doesn't exist until 1 second later. To workaround this I have to manually restart FRR after each boot.

Just delaying the startup of FRR until Wireguard is fully set up would be enough.

Regards

+1 (fully patched system, same behavior and fix request)

I had the same issue so I wrote a system patch to sleep for 30 seconds at the beginning of frr.inc. It's janky, but it works for me. If anyone else wants to use it until there's a more permanent solution the patch and installation instructions are available at https://github.com/alc5440/pfSense-frr-delay/tree/main

I can confirm I had this issue on CE 2.7.2, and I still have the issue on CE 2.8.0.
The patch above worked for CE 2.7.2, and seem to work and 2.8.0.

Could someone change "affected version" ?
Would an official patch be possible to change the order services start ?

I'm also having this issue. I have to restart the FRR service after rebooting the routers otherwise BGP will not come up. Routing is the primary purpose of my routers, so if there is any way I can help test patches, I'm willing.

I'm hitting this issue too with IPSEC. I have to log in to the multiple sites after a reboot and manually force the connection reset for the connection to re-establish. I tried the patch too and increased the sleep time to 180 but that still didn't fix it for me.