Project

General

Profile

Actions

Bug #8858

closed

IPsec VTI cleanup can accidentally remove valid interfaces

Added by Jim Pingle over 6 years ago. Updated over 6 years ago.

Status:
Resolved
Priority:
High
Assignee:
Category:
IPsec
Target version:
Start date:
08/31/2018
Due date:
% Done:

100%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.4.4
Affected Architecture:
All

Description

Then code that cleans up deleted/disabled IPsec VTI interfaces can, with certain configurations, delete a valid interface that should still be active.

The complete list of interfaces is rebuilt inside the P1 loop and can re-add an interface that should be excluded from cleanup. Needs moved above the P1 loop, but after the initial VTI interface configuration.

Actions #1

Updated by Jim Pingle over 6 years ago

  • Status changed from New to In Progress
Actions #2

Updated by Jim Pingle over 6 years ago

  • Status changed from In Progress to Feedback
  • % Done changed from 0 to 100
Actions #3

Updated by Jim Pingle over 6 years ago

  • Status changed from Feedback to Resolved

Can't reproduce on RC snap on the same box where it happened previously. Looks good.

Actions

Also available in: Atom PDF