7100 with static null4 route
-
I upgraded my 7100 to latest 24.03-RELEASE. I noticed my static blackhole null4 route no longer works, and I can see the traffic leaks to WAN.
In System -> Routing -> Static Routes, I have one blackhole routes to 192.168.0.0/19 using null4.
In /var/log/system.log, I can see below errors:
Aug 5 20:36:39 my-7100 php-fpm[53864]: /rc.newipsecdns: The command '/sbin/route -n6 get 'default' 2>/dev/null | /usr/bin/egrep 'flags: <.*PROTO.*>'' returned exit code '1', the output was '' Aug 5 20:36:39 my-7100 php-fpm[53864]: /rc.newipsecdns: Static Routes: Gateway IP could not be found for 192.168.0.0/19BTW, I have ipv6 disabled (set to None on both LAN and WAN interface).
-
I am also running pfSsense+ 24.03-RELEASE.
I just discovered a similar issue today on null routed IPv6 networks when I went to add a new null route for the discard prefix
100::/64.My null routes are visible in the GUI, but do not appear in the FRR Zebra status output, and they are leaking to the default gateway from the CLI with both the
routecommand andtraceroute6. -
Hmm, that should be fixed but doesn't appear to be. Digging....
-
Hmm, there was a bunch of work around gateways and I recall testing this at the time but it appears to be a regression: https://redmine.pfsense.org/issues/15669
