PfSense UI Not Updating frr.conf

JamieGB

I have an issue with a physical appliance. I Installed the latest FRR pkg and configured and all was well for some time. Now I'm having issues and any changes I make in the UI are not saved to the running config.

I can add neighbours, change neighbour settings, add published routes....frr.conf just stays the same.

I may have caused this by making a manual update to frr.conf running and coping to saved, but I'm unsure.

I've removed the FRR pkg, reinstalled, and all my config is still there.

Is there a way (I guess through the shell) to fix this issue, remove everything I have configured and start afresh? The device is 2000 miles away from me so reimaging it is not viable.

I'm logged in as admin....

If someone can tell me the folders or files I need to delete after uninstalling FRR to start afresh that would be great. Otherwise, if there's an easier alternative I'm all ears.

Thanks,
Jamie.

JamieGB

I also found this in the frr-reload.log file:

WARNING: frr-reload.py failed due to vtysh (exec file) exited with status 13

JamieGB

Guys this shouldn't be a difficult question. If nobody on this forum can tell me how to remove all traces of FRR and start again, can someone at least point me to the developer that can?

This isn't funny. I've approved purchase for Netgate as out on prem and cloud firewall solution and this question must have a simple answer.

My next step will be to remove all Netgates from my international hybrid VWAN.

pete35

@jamiegb this is a forum only, you should contact https://www.netgate.com/support

JamieGB

@pete35 Appreciate that but this is the CE so AFAIK no support.

JamieGB

OK well I managed to figure it out myself.

First off, when you configure FRR or any of its subcomponents, you should note exactly which order you configured every component. When you want to, for example, delete a route map which is associated with a BGP Peer, the UI becomes divorced with the config file. The UI does not properly remove relationships between the two components (or if there's more links) and the config file is left in an unmanageable state (from the UI perspective).

To fix this issue:

1. Uninstall the frr package
2. SSH to PfSense and enter BSD shell (option 8)
3. Locate all residual frr files left behind (no removed from package removal) by running find / -name frr and find / regex '.*frr.*'
4. Delete all the files and folders related to frr. In my case, there is nothing else in the OS which matches the name frr so delete all you find unless you know something is not related to the frr module. To remove directories add the -r switch to rm, eg rm -s /var/run/frr
5. Download a new backup of PfSense
6. Open your .xml configuration file in your favorite XML editor (I use Notepad++)
7. Search for the term <frr
8. You will find all the PfSense configuration left behind when uninstalling the package should really remove it.
9. Delete out all <frr.... elements / sections of XML
10. Restore your backup to PfSense
11. Reinstall FRR

There you go. Clean install of FRR. You're welcome.

Schannes

I had the same problem. I was able to solve the problem, with clearing the "SAVED frr.conf" field under Services --> FRR --> Global Settings --> Raw Config.
After clearing the field, it was possible again, to use the GUI to configure frr.

michmoor

@schannes The documentation is not entirely clear but you are correct. If the config is saved than any GUI elements you set are not saved. You have to clear it first. Its wonky.

orachimary

Got the same problem.
In my case, there are no errors. The configuration in /var/etc/frr/frr.conf is changed, but the changes are not automatically applied. Only after service restart.

In frr-reload.log only these messages

2023-05-05 05:49:35,113  INFO: Called via "Namespace(input=None, reload=True, test=False, debug=False, log_level='info', stdout=False, pathspace=None, filename='/var/etc/frr/frr.conf', overwrite=False, bindir='/usr/local/bin', confdir='/var/etc/frr', rundir='/var/run/frr', vty_socket=None, daemon='')"
2023-05-05 05:49:35,113  INFO: Loading Config object from file /var/etc/frr/frr.conf
2023-05-05 05:49:35,727  INFO: Loading Config object from vtysh show running
2023-05-05 09:49:40,111  INFO: Called via "Namespace(input=None, reload=True, test=False, debug=False, log_level='info', stdout=False, pathspace=None, filename='/var/etc/frr/frr.conf', overwrite=False, bindir='/usr/local/bin', confdir='/var/etc/frr', rundir='/var/run/frr', vty_socket=None, daemon='')"
2023-05-05 09:49:40,111  INFO: Loading Config object from file /var/etc/frr/frr.conf
2023-05-05 09:49:40,771  INFO: Loading Config object from vtysh show running

By the way, in the test environment, everything works.

2023-05-05 04:41:57,444  INFO: /var/run/frr/reload-Z85C6S.txt content
['interface igc0.50\n ip ospf network broadcast\n',
 'router ospf\n area 0.0.0.0 shortcut default\n',
 'interface igc0.50\n ip ospf network broadcast\n',
 'router ospf\n area 0.0.0.0 shortcut default\n']
2023-05-05 04:43:50,788  INFO: Called via "Namespace(input=None, reload=True, test=False, debug=False, log_level='info', stdout=False, pathspace=None, filename='/var/etc/frr/frr.conf', overwrite=False, bindir='/usr/local/bin', confdir='/var/etc/frr', rundir='/var/run/frr', vty_socket=None, daemon='')"
2023-05-05 04:43:50,789  INFO: Loading Config object from file /var/etc/frr/frr.conf
2023-05-05 04:43:51,425  INFO: Loading Config object from vtysh show running
2023-05-05 04:43:51,735  INFO: "frr version 7.5.1" cannot be removed
2023-05-05 04:43:51,736  INFO: /var/run/frr/reload-RH67QI.txt content
['interface igc0.50\n ip ospf network broadcast\n',
 'interface tun_wg3\n ip ospf hello-interval 1\n',
 'router ospf\n area 0.0.0.0 shortcut default\n']
2023-05-05 04:43:52,043  INFO: Loading Config object from vtysh show running