MultiWAN provider remains disabled after failure
Sometimes, after a link failure, a provider in a multiwan setup doesn't come up after the problem is resolved.
I'm able to reproduce this issue only using a specific adsl router (leased by a big Italian isp).
Steps to reproduce:
1. in a multiwan setup simulate a failure disconnecting the cable from red to adsl modem
2. apply some changes to the firewall, I use restart lsm
3. wait and see: the provider never comes back (I use shorewall status -i)
I found that LSM (Link Status Monitor) uses arp packets instead of icmp to discover link status in this scenario.
I also found that configuring LSM to use the sourceip address of the network interface forces icmp packets, solving the issue.
#5 Updated by Filippo Carletti about 3 years ago
- Status changed from MODIFIED to ON_QA
- % Done changed from 60 to 70
2. simulate link failure
3. restart lsm
4. re-establish link
1. if mail notification is enabled, you should receive one down mail on link failure and one up mail on link connection
2. you shouldn't receive email when you restart lsm
3. shorewall status -i should report real status
All tests should be repeated on a system where one of the uplink uses a dhcp dynamic address and one where pppoe is used.