Any chance to decrease ping_hosts.sh minicron run interval?



  • It would help bring up ipsec tunnels quicker when failing over to the secondary firewall if you can not use Dead Peer Detection on the ipsec tunnel.  It would be great to have that as an option to set the interval globally if there is some reason it is set to a longer interval of 240 seconds and should be the default.  60 seconds would be good though for me :).

    I tested it by manually editing /etc/rc and it does help my sites during testing.


  • Rebel Alliance Developer Netgate

    60 can be too low at larger scale (hundreds of tunnels).

    It might be possible for that to be a tunable somewhere in the future though.