Closed haarp closed 2 years ago
AdSchellevis
commented
2 years ago It's one of the things we indeed inherited from the past and is difficult to remove as standard behaviour, since a lot of people depend on it. Making this more explicit and offering the option per gateway to disable the route is probably the clearest option as you do need to go to that screen to enable the monitor in the first place.
Relevant backend code:
fichtner
commented
2 years ago It’s more or less the scope of https://github.com/opnsense/core/issues/5989 already
fichtner
commented
2 years ago We need to create more visibility first before adding more overrides.
AdSchellevis
commented
2 years ago @fichtner sure, I don't mind having the routes cleaned up first and adding toggles where needed later. In this case I think it makes sense to add a toggle in the gateway edit so it's at least explicit from a user perspective in the correct spot. No need to rush this in.
Important notices
Is your feature request related to a problem? Please describe.
When a monitor IP is entered for a gateway, Pf/Opnsense will automatically create a static route for this IP and prevent the IP from being reused in other gateways. This behavior is unexpected and can lead lot of time spent debugging, or even broken DNS (in a multi WAN setup when the monitor IP is also the DNS server)
It is also not well documented or obvious when working on the web interface.
Examples:
Describe the solution you like
The current implementation seems dependent on this behavior. However, pfsense has recently received a PR that changes this: https://github.com/pfsense/pfsense/pull/4551
I would like to kindly request the same for Opnsense.
Describe alternatives you considered
In case this feature request is rejected, please at least add a warning to the web interface where monitor IPs are configured, indicating that it will lead to an automatic static route being created.
Thanks a lot!