VPN: IPSEC - Always showing "Apply changes"
-
2.1-RC0 (amd64)
built on Thu Jun 6 21:08:57 EDT 2013and
2.1-RC0 (amd64)
built on Mon Jun 17 05:26:57 EDT 2013in different installations shows:
The IPsec tunnel configuration has been changed. You must apply the changes in order for them to take effect.After applying I get:
The changes have been applied successfully. The IPsec tunnel configuration has been changed. You must apply the changes in order for them to take effect.After reapplying I get the same.
If I go to an other page and come back to VPN:IPSEC I get again:
The IPsec tunnel configuration has been changed. You must apply the changes in order for them to take effect. -
I have seen that happen before but I have not ever been able to replicate it myself. If you want to clear it, you can remove the /var/run/ipsec.dirty file that triggers the display of the message.
There must be something that is preventing the file from being removed, or something immediately adding it back somehow. Without being able to properly replicate it, it's difficult to speculate as to what might be the cause.
-
My test machine didn't have this, too, until I changed remote gateway to a host name.
If I change it back to an IP it's gone. -
Using a hostname for a gateway doesn't sound like it would work in most situations. I am surprised you can use a hostname for a gateway on pfsense. How can pfsense query an external DNS for the gateway DNS hostname if the system can not reach outside it's own network unless it just happens to be cached on a DNS server on a local interface or it is a DNS name that your local DNS server is a master/slave for the domain.
-
A hostname for the IPsec gateway (peer), not the WAN gateway.
-
Ah. Yea I assumed WAN gateway. I didn't keep the context in mind.
-
Having hostnames was the key. I just committed a fix:
https://github.com/pfsense/pfsense/commit/d17c7b79f1349e3b500b951443032dfa153d32ee
-
THX
