Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Gateway Group rule still created when all members are down

    Scheduled Pinned Locked Moved Routing and Multi WAN
    1 Posts 1 Posters 173 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      micro8765
      last edited by

      v244_p2

      In System -> Miscellaneous, the option Skip rules when gateway is down is ticked.

      For rules with an individual gateway selected, this works as expected; when the gateway is down (either via monitoring or forced down) the rule is not created.

      However if the rule specifies a gateway group whose members are all down, the rule is still created. I tested this by creating a 2-member gateway group, 1 member Tier 1 & the other Tier 2. I marked both gateways down. I created a rule to route to the gateway group and set it to log. I expected that the rule would not log any hits when both members were marked down, but in fact it did log hits and the traffic was passed.

      I see similar behaviour with OpenVPN when the interface is set to a gateway group. If only one member is marked down and the VPN is restarted, it will honour that and use the other member. However if both members are marked down, the VPN will still be established.

      Is this working as expected?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.