Somehow sending a SIGHUP before flushing and reloading works better then

after. Technically a SIGHUP to racoon should not do anything.

1 files changed, 6 insertions, 4 deletions

diff --git a/etc/inc/vpn.inc b/etc/inc/vpn.inc
index 923e632..8c8c2d8 100644
--- a/etc/inc/vpn.inc
+++ b/etc/inc/vpn.inc
@@ -608,6 +608,8 @@ EOD;
 
 
 			if(is_process_running("racoon")) {
+				/* We are already online, reload */
+				mwexec("/usr/bin/killall -HUP racoon");
 				/* flush SPD entries */
 				mwexec("/sbin/setkey -FP");
 				mwexec("/sbin/setkey -F");
@@ -615,11 +617,12 @@ EOD;
 				while($i < 2) {
 					/* load SPD */
 					mwexec("/bin/cat {$g['varetc_path']}/spd.conf | /usr/local/bin/slowdownpipe.sh | /sbin/setkey -c");
+					sleep(2);
 					$i++;
 				}
-				/* We are already online, reload */
-				mwexec("/usr/bin/killall -HUP racoon");
 			} else {
+				/* start racoon */
+				mwexec("/usr/local/sbin/racoon -f {$g['varetc_path']}/racoon.conf");
 				/* flush SA + SPD  entries*/
 				mwexec("/sbin/setkey -FP");
 				mwexec("/sbin/setkey -F");
@@ -627,10 +630,9 @@ EOD;
 				while($i < 2) {
 					/* load SPD */
 					mwexec("/bin/cat {$g['varetc_path']}/spd.conf | /usr/local/bin/slowdownpipe.sh | /sbin/setkey -c");
+					sleep(2);
 					$i++;
 				}
-				/* start racoon */
-				mwexec("/usr/local/sbin/racoon -f {$g['varetc_path']}/racoon.conf");
 
 				/* start dnswatch, if necessary */
 				if (count($dnswatch_list) > 0) {