Closed ghost closed 5 years ago
Sorry forgot link from pfsense forums: https://forum.netgate.com/topic/140537/certificate-long-time-to-issue/17
solution is to use:
if netstat -help 2>&1 | grep "\-p proto" >/dev/null; then
_debug "Using: netstat"
#for windows version netstat tool
how many seconds does it cost for you on your machine ?
netstat -h
Anywhere from 30 to 120 seconds. Multiply that by 7 domain names and we have a problem 😁
Hello!
Reporting a bug regarding using netstat logic. Please see here, I described and replicated it.
This code:
It executes "if netstat -h 2>&1 | grep "-p proto" >/dev/null; then" which executes netstat -h and this takes long time as it resolves and trying to resolve all IPs :) then when it doesn`t find "-p proto" moves on to next command which is OK for our firewall. I removed first IF after _debug "Using: netstat" and verification is done in like 10 seconds for 12 hosts :)