Title: Aliases not loaded on reboot?
Post by: minichaz on January 18, 2018, 11:35:26 pm
Hello. I'm still getting to know OPNsense but enjoying so doing. :)

I set up some policy based routing to send traffic to certain networks over an OpenVPN tunnel. For ease these networks are defined in an alias.

I updated to 17.7.12 today and I noticed that after a reboot these rules don't work. Everything looks OK in pfTables and looking at the rules in pfInfo but nothing goes out over the tunnel. However when I view the alias in question in the GUI and save it... everything starts working again. It's like the alias (which is a list of networks in CIDR notation) is empty until this refresh is done.

I notice also that using the command prompt option 11 to reload all services will also make things start working without needing to touch the alias in the GUI.

Could the aliases be being populated too late in the restart process or something? Just a thought. :)

Post by: franco on January 19, 2018, 09:23:09 am
Hi minichaz,

Are you using GeoIP or external URL aliases? If you don't have early connectivity that is what could happen.

I haven't heard of specific issues with 17.7.12, because we've been rewriting the whole subsystem for 18.1 which had similar bugs of what you see, but that was on new code which wasn't on 17.7 or 17.1 for that matter so from your perspective it must have been so always.

In any case, 18.1 is almost out (January 29) and should be more robust so I would ask you to report back when you migrated to let us know if there is something we need to look into further or it happened to start working the way it should be.

What do you think?