Review usage of IPsec-related sysctl OIDs in GUI and backend code
2.3 will have less sysctl OIDs with the various changes made to FreeBSD along the way. We need to review the sysctls modified by the IPsec code in various places (e.g. /etc/inc/vpn.inc) to make sure they still exist or are necessary. In particular, net.inet.ip.ipsec_in_use and net.inet.ip.fastforwarding should not be present or used on 2.3
Updated by Chris Buechler almost 6 years ago
- Status changed from Feedback to Assigned
I removed fastforwarding from config upgrade code. Looks like that was the last remnant of these.
We need config upgrade code to unset $config['sysctl']['item'][x]['tunable'] = "net.inet.ip.fastforwarding"
to remove it from upgraded configs.