From f3c8bd98aa5eb861245610b05893a9ba3700ffd3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ermal=20Lu=E7i?= <eri@pfsense.org>
Date: Sun, 26 Apr 2009 15:11:43 +0000
Subject: Fix a spd.conf not loading changes issue.

---
 etc/inc/vpn.inc | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/etc/inc/vpn.inc b/etc/inc/vpn.inc
index 3a05094..585f7f1 100644
--- a/etc/inc/vpn.inc
+++ b/etc/inc/vpn.inc
@@ -825,6 +825,8 @@ EOD;
 			sleep("0.1");
 			log_error("IPSEC: Sent a reload signal to the IPsec process");
 			mwexec("/usr/local/sbin/racoonctl -s /var/run/racoon.sock reload-config", false);
+			/* load SPD without flushing to be safe on config additions or changes. */
+			mwexec("/usr/local/sbin/setkey -f {$g['varetc_path']}/spd.conf", false);
 		} else {
 			/* flush SA + SPD entries */
 			mwexec("/usr/local/sbin/setkey -FP", false);
-- 
cgit v1.1