Project

General

Profile

Actions

Bug #7964

open

Restart openvpn on gateway switching

Added by Grischa Zengel about 4 years ago. Updated over 2 years ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
Multi-WAN
Target version:
-
Start date:
10/17/2017
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.4
Affected Architecture:

Description

I have 2 openvpn clients with GW Group configured.
While Tier1 interface (PPPoE) was going down the two openvpn crashed. After 12 min I restarted them manually.

Oct 18 01:15:17  openvpn  12024  OpenVPN 2.4.4 amd64-portbld-freebsd11.1 [SSL (OpenSSL)] [LZO] [LZ4] [MH/RECVDA] [AEAD] built on Oct 8 2017  
Oct 18 01:15:17  openvpn  12024  disabling NCP mode (--ncp-disable) because not in P2MP client or server mode  
Oct 18 01:03:26  openvpn  56661  /usr/local/sbin/ovpn-linkdown ovpnc2 1500 1561 10.190.254.18 10.190.254.17 init  
Oct 18 01:03:26  openvpn  47217  /usr/local/sbin/ovpn-linkdown ovpnc1 1500 1561 10.19.254.26 10.19.254.25 init  
Oct 18 01:03:26  openvpn  47217  Exiting due to fatal error  
Oct 18 01:03:26  openvpn  47217  TCP/UDP: Socket bind failed on local address [AF_INET]1.2.3.4:0: Can't assign requested address (errno=49)  
Oct 18 01:03:26  openvpn  56661  Exiting due to fatal error  
Oct 18 01:03:26  openvpn  56661  TCP/UDP: Socket bind failed on local address [AF_INET]1.2.3.4:0: Can't assign requested address (errno=49)  
Oct 18 01:03:26  openvpn  47217  TCP/UDP: Preserving recently used remote address: [AF_INET]2.3.4.5:1198  
Oct 18 01:03:26  openvpn  56661  TCP/UDP: Preserving recently used remote address: [AF_INET]3.4.5.6:1198  
Oct 18 01:03:26  openvpn  47217  Preserving previous TUN/TAP instance: ovpnc1  
Oct 18 01:03:26  openvpn  56661  Preserving previous TUN/TAP instance: ovpnc2  
Oct 18 01:03:26  openvpn  47217  Re-using pre-shared static key  
Oct 18 01:03:26  openvpn  56661  Re-using pre-shared static key  
Oct 18 01:03:26  openvpn  56661  NOTE: the current --script-security setting may allow this configuration to call user-defined scripts  
Oct 18 01:03:26  openvpn  47217  NOTE: the current --script-security setting may allow this configuration to call user-defined scripts  
Oct 18 01:03:21  openvpn  56661  SIGUSR1[soft,ping-restart] received, process restarting  
Oct 18 01:03:21  openvpn  47217  SIGUSR1[soft,ping-restart] received, process restarting  
Oct 18 01:03:21  openvpn  47217  Inactivity timeout (--ping-restart), restarting  
Oct 18 01:03:21  openvpn  56661  Inactivity timeout (--ping-restart), restarting  
Actions #1

Updated by Grischa Zengel about 4 years ago

After the PPPoE interface is up, the openvpn clients still use Tier2 and didn't fall back to Tier1.

Actions #2

Updated by Grischa Zengel about 4 years ago

perhaps this would help: --remap-usr1 SIGHUP
I don't know how you handle openvpn exactly. Have you send SIGUSR1? At what time do you replace the config file?

--remap-usr1 signal
    Control whether internally or externally generated SIGUSR1 signals are remapped to SIGHUP (restart without persisting state) or SIGTERM (exit).

    signal can be set to "SIGHUP" or "SIGTERM". By default, no remapping occurs.
Actions #3

Updated by Jim Pingle over 2 years ago

  • Category changed from Gateway Monitoring to Multi-WAN
Actions

Also available in: Atom PDF