location: Restart IPsec after firewall was restarted

strongswan creates rules in iptables which are being dropped when
the firewall is being restarted.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>

diff --git a/src/scripts/convert-to-location b/src/scripts/convert-to-location
index 9149b854d32c011bec8c621474d35bf10d0bb87f..428a91d34254bc78ba4bd4954a3786a7c9ab5fb8 100755 (executable)
--- a/src/scripts/convert-to-location
+++ b/src/scripts/convert-to-location
@@ -47,6 +47,11 @@ if [ -f "$FW_CONF_DIR/geoipblock" ]; then
 
        # Regenerate firewall chains.
        /etc/init.d/firewall restart
+
+       # Restart IPsec for dropped iptables rules
+       if grep -q "ENABLED=on" /var/ipfire/vpn/settings; then
+               /etc/init.d/ipsec restart
+       fi
 fi
 
 # Finished.