www.zeroshell.org Forum Index www.zeroshell.org
Linux Distribution for server and embedded devices
 
 SearchSearch  RegisterRegister  UsergroupsUsergroups 
 ProfileProfile  Log inLog in  Log in to check your private messagesPrivate Message 

Bonded - VPN reconnect issues

 
Post new topic   Reply to topic    www.zeroshell.org Forum Index -> ZeroShell
View previous topic :: View next topic  
Author Message
cerberus.zeroshell



Joined: 07 Jul 2016
Posts: 2

PostPosted: Thu Jul 07, 2016 2:37 pm    Post subject: Bonded - VPN reconnect issues Reply with quote

Hi,

We are using Zeroshell in VPN bonding configuration. Everything works fine in bonding and we get very high throughput. We use static routes for tunnel endpoints and default route is used on Bonded interface to push all traffic via Datacenter ZS. Netbalancer is turned off.

Recently we have observed that when the underlying internet connection i.e. PPP reconnects, the corresponding VPN doesn't come up until we reboot the box from GUI.

The VPN tunnel are configured using UDP but when the tunnel were changed to use TCP, it comes up ok when PPP reconnects but throughput is impacted badly around half of the speed of the bundle.

We tested this on 3.5.0 and 3.6.0. and tunnels stays down post PPP reconnect till we reboot the ZS.

Any pointers will be helpful.

Thanks in advance
Hitesh
Back to top
View user's profile Send private message
iulyb



Joined: 02 Jun 2016
Posts: 82

PostPosted: Tue Jul 12, 2016 5:06 pm    Post subject: Reply with quote

Can you check if is related with conntrack ?

Under firewall section go to contrack then press flush, enable then disable contrack ..
Back to top
View user's profile Send private message
cerberus.zeroshell



Joined: 07 Jul 2016
Posts: 2

PostPosted: Thu Jul 21, 2016 2:56 pm    Post subject: Reply with quote

Thanks but that didn't helped.

Any other pointers?

Cheers
Hitesh
Back to top
View user's profile Send private message
Daniel.Zimmermann



Joined: 29 Aug 2016
Posts: 2

PostPosted: Fri Sep 16, 2016 6:54 pm    Post subject: Reply with quote

I experienced a similar issue - and found that some routes get corrupted. In the WebGUI everything looks still ok - but if you look at the routing tables the vpn routes point somewhere but not to the tunnel.

Happen every time there is a dal reconnect.

Maybe you want to check this - eventually we find someone who knows a work around.

cheers
Daniel
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    www.zeroshell.org Forum Index -> ZeroShell All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB © 2001, 2005 phpBB Group