On 2016-02-18, Christopher Sean Hilton <ch...@vindaloo.com> wrote: > My box cannot resolve the name "ike-v1.example.com" until > after isc_named is started which happens way late in the bootup
That seems like a misconfiguration - apart from this issue, what if BIND crashes or you need to update it? can't you list another nameserver in resolv.conf? > process. I've noticed that the rcctl manpage mentions changing > the startup order. > > * Can I affect this change at all since isakmpd is a base > system service and isc_named is in pkg_scripts? No, this is only for package scripts. > Just restarting isakmpd doesn't load /etc/ipsec.conf. Without a > configuration, I'm not sure how useful isakmpd is. > > * Would it be wise to just add cron job that fires at reboot > and uses rcctl to reload isakmpd and then reloads the ipsec > configuration? > > As always, it's possible that I'm completely missing something > here. I'm always interested in better solutions. You could run isakmpd/ipsecctl from rc.local which always runs after the main startup scripts. Otherwise you're into modifyong /etc/rc.
