1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Open VPN goes down after few minutes

Discussion in 'Tomato Firmware' started by 1hogtryfix, Nov 29, 2009.

  1. 1hogtryfix

    1hogtryfix Addicted to LI Member

    Hi there,
    I have linksys54GL and flashed with Tomato firmware version 1.25 (latest). This router is setup with OpenVPN client (in VPN tunneling option). My issue is after the router rebooted, I can connect to Internet with VPN account for only few minutes. After that my Internet just died. But if I click "Stop Now" button on VPN client, then my Internet was back but I lost my VPN.
    Can any one shed me some light what went wrong please? any direction, reference are greatly appreciated.

    Here is my setup Winxp <--> IPCop <--> Router (WRT54GL) <--> modem (SpeedStreem 4100)

    Thanks in ad vance
     
  2. SgtPepperKSU

    SgtPepperKSU Network Guru Member

    Anything show up in the router logs when it disconnects?
     
  3. 1hogtryfix

    1hogtryfix Addicted to LI Member

    Thank you for looking. Yes it did generate some log info. I took last 100 lines of log.

    Here were the log info when Internet stopped working after few minutes connecting to VPN
    I have just removed them
     
  4. SgtPepperKSU

    SgtPepperKSU Network Guru Member

    Try changing the "TLS Renegotiation Time" to 0.
     
  5. 1hogtryfix

    1hogtryfix Addicted to LI Member

    Hi stgpepperKsu,
    It does not work. I believe when this line show up "Nov 30 09:23:05 RodeoPalm daemon.notice miniupnpd[154]: received signal 15, good-bye" on the log then Internet went down. Is there anything related between Internet and this service? Please give an advice.

    Thanks again for your help
     
  6. 1hogtryfix

    1hogtryfix Addicted to LI Member

    Hi again,

    Here was a log info that after set TLS Renegotiation Time = 0.

    It seemed the TLS has an issue. Would anyone give me some advice please

    Thanks again for reading my post
    Nov 30 12:20:45 RodeoPalm daemon.notice openvpn[731]: UDPv4 link local: [undef]
    Nov 30 12:20:45 RodeoPalm daemon.notice openvpn[731]: UDPv4 link remote: 94.23.114.100:443
    Nov 30 12:21:07 RodeoPalm daemon.err openvpn[731]: event_wait : Interrupted system call (code=4)
     
  7. SgtPepperKSU

    SgtPepperKSU Network Guru Member

    Does this only occur right after a reboot? If you stop/start the client once this is happening, does it work properly?
     
  8. 1hogtryfix

    1hogtryfix Addicted to LI Member

    Hi again,
    It occurs all the time. After I reboot, Internet was up for few minutes with VPN address, then Internet went down. If I click "Stop Now" button, the Internet works again. If I click start button, Internet will work for few minutes then down again. I might be wrong but the symptom like firewall starts to take place after few minutes VPN connected. Is there anyway that I can check if the packet was dropped. Or is there any rule that allow Firewall to open port 443 for incomming and outgoing traffic. I can't figure out for my life if the Web Gui allows me to do that rule. Please advice

    Regards
     
  9. SgtPepperKSU

    SgtPepperKSU Network Guru Member

    Code:
    iptables -t filter -nvL; iptables -t mangle -nvL; iptables -t nat -nvL
    will show all of the firewall rules.

    Have you tried pinging an IP address over the internet, as opposed to a DNS name?
     
  10. 1hogtryfix

    1hogtryfix Addicted to LI Member

    Mr. SgtPerperKsu,
    I tried to ping by ip number but it kept time out. Please give some advice

    thank you
     
  11. 1hogtryfix

    1hogtryfix Addicted to LI Member

    Hi again,
    My VPN provider said I need to open port 443. As indicated from the above, I did not see any port 443 UDP opened at all. Could anyone tell me how to add this rule?
    Here is what I have but it seemed not to work(I don't know if syntax error or my insane router is aged?).
    Here is the code: iptables -A INPUT -s 0/0 -i eth0 -d 192.168.1.2:443 -p UDP -j ACCEPT
    iptables -A INPUT -s 0/0 -i eth0 -d 192.168.1.2:443 -p UDP -j ACCEPT
    iptables -A FORWARD -s 0/0 -i eth0 -d 192.168.1.2 -o eth1 -p TCP \ --sport 443:443 --dport 443 -j ACCEPT

    Thanks in advance for your helps
     
  12. 1hogtryfix

    1hogtryfix Addicted to LI Member

    Hi again,
    I think the problem solved, I changed the PPPeo from modem to router, and let router handle the up time and authentication. This tip is from this forum title "setup Tomato behind modem"
    Thank you Mr. SgtPeperKSU, and every one. Have a happy every day
     

Share This Page