Archive > 22.7 Legacy Series
Gateway Monitoring changes monitor IP on ISP failure
CJ:
Gateway monitoring has been working well, but I discovered a problem with it's choice of monitoring IP.
When my connection is up, it monitors my ISP gateway and everything works correctly.
When my connection goes down, the gateway and monitoring IPs change to the IP of my cable modem, which causes the gateway to be marked as online as the cable modem responds to all pings.
When the connection comes back up, the gateway and monitoring IPs change back to the ISP gateway.
I currently have the ISP gateway manually entered into the monitor IP field but is there a way to list certain IPs or ranges as not valid for monitoring? Or some other way to keep it from reverting to the cable modem?
Thanks.
chemlud:
You should configure the monitoring IP under System -> Gateways -> Single (e.g. 1.1.1.1).
Is your WAN DHCP? Do you get a private IP on WAN when the connection to ISP fails? Under Interfaces -> WAN you can reject DHCP leases from the private IP of your modem.
Shoresy:
Which IP are you using for each of your Gateway monitor IP's in System > Gateways > Single? You should be using different monitoring IP's for each gateway, something such as a public DNS server IP (8.8.8.8 for Google DNS).
CJ:
Related to this, I just discovered that you can't set your monitoring IP to the gateway IP. The form accepts it but going back to edit the gateway shows an empty monitoring IP field.
--- Quote from: chemlud on January 01, 2023, 10:04:52 pm ---You should configure the monitoring IP under System -> Gateways -> Single (e.g. 1.1.1.1).
--- End quote ---
I didn't want to set a monitoring IP because my connection is via DHCP and I don't want to bind to a specific IP in case the gateway changes.
--- Quote from: chemlud on January 01, 2023, 10:04:52 pm ---Is your WAN DHCP? Do you get a private IP on WAN when the connection to ISP fails? Under Interfaces -> WAN you can reject DHCP leases from the private IP of your modem.
--- End quote ---
Thanks. I was pretty sure there was an option like that but I couldn't find it. Now I just need to test that I can still get to the status page of the cable modem even if the lease is rejected.
--- Quote from: Shoresy on January 02, 2023, 04:06:27 am ---Which IP are you using for each of your Gateway monitor IP's in System > Gateways > Single? You should be using different monitoring IP's for each gateway, something such as a public DNS server IP (8.8.8.8 for Google DNS).
--- End quote ---
I only have one gateway and that's what I was using to monitor. Hence the problem with it changing to the cable modem IP and not recognizing that the gateway is down.
I don't want to use anything beyond the ISP gateway for monitoring because that introduces additional variables and my concern is primarily from me to my ISP.
CJ:
It looks like there's an issue in the UI. Based on the help text, man page and this thread, https://forum.opnsense.org/index.php?topic=25318.0 I should be able to put a CIDR notation into the rejection field.
However, whenever I attempt to use anything other than a single IP, I get the following error.
"A valid alias IP address must be specified to reject DHCP Leases from."
Navigation
[0] Message Index
[#] Next page
Go to full version