Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 15 May 2019 16:37:53 +0200
From:      Matthias Andree <mandree@FreeBSD.org>
To:        freebsd-questions@freebsd.org
Cc:        RW <rwmaillists@googlemail.com>
Subject:   Re: rcorder - wait for tap0
Message-ID:  <00f47435-6911-c7c8-1dfb-cefae513390f@FreeBSD.org>
In-Reply-To: <20190514234301.0f28c432@gumby.homeunix.com>
References:  <dc363ae4-d331-efd0-e099-ee01b7eaddb1@nethead.se> <20190514182945.0ced24d4@gumby.homeunix.com> <20190514185340.0159358c@gumby.homeunix.com> <63fe68c5-b85b-7d6d-a438-596ec8041f6b@nethead.se> <20190514220824.a4779bb2.freebsd@edvax.de> <20190514234301.0f28c432@gumby.homeunix.com>

next in thread | previous in thread | raw e-mail | index | archive | help
Am 15.05.19 um 00:43 schrieb RW:
> On Tue, 14 May 2019 22:08:24 +0200
> Polytropon wrote:
> 
>> On Tue, 14 May 2019 21:39:26 +0200, Per olof Ljungmark wrote:
>>> On 2019-05-14 19:53, RW via freebsd-questions wrote:  
>>>> On Tue, 14 May 2019 18:29:45 +0100
>>>> RW wrote:
>>>>   
>>>>> On Tue, 14 May 2019 08:49:52 +0200
>>>>> Per olof Ljungmark wrote:
>>>>>  
>>>>>> Despite large amounts of cofee and time I cannot grasp how to
>>>>>> make this happen.
>>>>>>
>>>>>> What I want is
>>>>>>
>>>>>> Boot -> start openvpn/tap0 configured -> start named -> start
>>>>>> jails
>>>>>>
>>>>>> Because the jails uses tap0 of course they cannot start before
>>>>>> tap0 is up, but this is what happens in the default
>>>>>> configuration.
>>>>>>
>>>>>> Surely this cannot be unique? How did you do it?
>>>>>>
>>>>>> Preferrably without messing with rc.d scripts that gets
>>>>>> overwritten when updated.  
>>>>>
>>>>> You need an rc script in /usr/local/etc/rc.d with something like:
>>>>>
>>>>>
>>>>> # PROVIDE: vpnwait
>>>>> # REQUIRE: openvpn
>>>>> # BEFORE:  <whatever string the jail rc.d script provides>  
>>>>
>>>> now I come to think about it openvpn runs after LOGIN, so either
>>>> you have to put up with the order
>>>>
>>>>     named, openvpn, jails
>>>>
>>>> or rewrite the openvpn script.
>>>>
>>>> What I did was to allow DNS to pass directly to one well-known
>>>> server so lookups could happen before openvpn started.  
>>>
>>> Thank you for your comments.
>>>
>>> Thing is named dies if tap0 is not up when it starts and as this is
>>> a public named server it needs to be running after boot.
>>>
>>> Rewriting the provided rc scripts, they are part of the port and 
>>> requires work when updated.
>>>
>>> So, the conlusion is, fiddle with the ule/rc.d/ and prepare to fix
>>> them after every update? No other way?  
>>
>> There is another way, but it doesn't sound much better:
>>
>> You could use /etc/rc.local to implement the exact order in
>> which you need to start the different services, without using
>> their automatic startup (*_enable="YES" in combination with
>> the /etc/rc.d/ and /usr/local/etc/rc.d/ scripts).
>>
> 
> A variant of that idea would be to set
> 
> openvpn_enable=NO
> 
> and run the installed  openvpn script from a wrapper rc script
> using 'onestart'  
> 
> I've CCed the port maintainer just in case he's not aware of the issue.

The issue is that there's not one solution for two different problems,
but typically we install one rcfile. What are you proposing, what should
I do?

I'd typically expect system administrators to be able to tweak
rcorder(8) scripts to their needs.



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?00f47435-6911-c7c8-1dfb-cefae513390f>