How to restart ipsec on renew of certificate



  • Hi,

    I try to find the way to restart my ipsec on renewal of the certificate. I find the action list but cannot find the right info to put in the command text field.

    Any idea on how to to it ?

    Regards,
    Jonathan


  • Rebel Alliance Developer Netgate

    One of these should work:

    1. Method = Restart Local Service, Command = ipsec (This may be enough to refresh the IPsec config, but it's not a full restart)
    2. Method = PHP Command, Command = ipsec_configure(true) (This may fail since it may not have the right required libraries)
    3. Method = Shell Command, Command = /usr/local/sbin/pfSsh.php playback restartipsec (This may fail since the ACME script which starts the command is PHP, and launching pfSsh.php from within PHP doesn't always work)
    4. Method = PHP Command, Command = file_get_contents("/etc/phpshellsessions/restartipsec") (If the shell command fails, this should work instead)

Log in to reply