summaryrefslogtreecommitdiffstats
path: root/src
diff options
context:
space:
mode:
authorAlexander Chernavin <achernavin@netgate.com>2020-03-20 10:36:43 -0400
committerNeale Ranns <nranns@cisco.com>2020-03-23 13:23:09 +0000
commitf7f7f84ae9d949c5c872f9e31bb54cff7ca9c017 (patch)
treee6acfdbaf7f703da875a6bf03e002bb44555d461 /src
parentb232d192f2f77114e26cf7f99b57bcd6140872d0 (diff)
ipsec: increment no-tunnel counter in ipsec-tun-input
If "no-tunnel" error erises, you will not see it in the "show errors" output because the packet will be punted. That fact complicates troubleshooting. Type: improvement Change-Id: Ic08347f81131a4a73a05b66acbfb02797373f5ab Signed-off-by: Alexander Chernavin <achernavin@netgate.com>
Diffstat (limited to 'src')
-rw-r--r--src/vnet/ipsec/ipsec_tun_in.c3
1 files changed, 3 insertions, 0 deletions
diff --git a/src/vnet/ipsec/ipsec_tun_in.c b/src/vnet/ipsec/ipsec_tun_in.c
index 501ab027634..fd0c3b08f19 100644
--- a/src/vnet/ipsec/ipsec_tun_in.c
+++ b/src/vnet/ipsec/ipsec_tun_in.c
@@ -347,6 +347,9 @@ ipsec_tun_protect_input_inline (vlib_main_t * vm, vlib_node_runtime_t * node,
IPSEC_TUN_PROTECT_INPUT_ERROR_RX,
from_frame->n_vectors - (n_disabled +
n_no_tunnel));
+ vlib_node_increment_counter (vm, node->node_index,
+ IPSEC_TUN_PROTECT_INPUT_ERROR_NO_TUNNEL,
+ n_no_tunnel);
vlib_buffer_enqueue_to_next (vm, node, from, nexts, from_frame->n_vectors);