We are experiencing a lot of problems with RUT-951 routers from firmware RUT9M_R_00.07.06.3
The specific routers are equipped with the above firmware version and with 4G sim card. They are using an IPSec tunnel. When the failover is trigger due to the fact that the 4G connection is lost/renewed. All traffic is redirected into the tunnel which results that the devices within the LAN are losing their internet connection. At that moment, the device are going offline and the NFC-terminals can not get connection with their payment host. This results in an order of order situation from our Payment terminals. The only way to resolve this is to reboot the router.
Is this a know issue? What can we do to avoid this situation? A default route is configured with the IPSec configuration. We didn’t had any problem with previous firmware versions.
Is it correct that your default traffic going only over the tunnel, I believe over the tunnel should be only for a specified range of addresses, but not for 0.0.0.0/0, obviously it forces all traffic to go over the tunnel, maybe your case is designed to going over the tunnel for internet and so on?
Share with me routing information, execute this command route -n, and send results to me.
I have update the routers which experience the problem to the most recent firmware but still see the same problem. It looks like the problem is less frequent but due to a renew of the 4G connection, the router start to route all traffic into the tunnel. After a reboot of the router, it’s normal again. We need a permanent solutions. What do you suggest?
From your route information, I see that is fine at the current moment, it would be better to list routes when the issue appears, but anyway, I would ask you to download the troubleshoot file from the device and share it with me.
I will share with you instructions on how to share data with me.
Triubleshoot file you can download from device here: System->Maintenance->Troubleshoot
Hi Marijs, i have already replied on your email and filled in the ‘Teltonika community request for private communication’ but no-one has reached out yet. Not sure what I can do more.
I do have the trouble shoot file ready.
I did receive all your emails and replied to them but I do have the idea that the emails are not get to you. Do you have a support email address which I can use to provide you the troubleshoot logging?
From ligs i see that after initialization of IPSEC, WAN port is detected with mob1s1a1_4 - physical interface, but: Thu Apr 11 07:30:23 2024 user.info mwan3track[3486]: Check (ping) failed for target “1.1.1.1” on interface mob1s1a1 (qmimux0). Current score: 6
And here is ping trying run over mob1s1a1, did you config any addtional interfaces ?
With normal state when the internet is accessible and when your devices behind the LAN network, you can’t reach the internet, because from the current perspective it`s looks fine except interface mob1s1a1_4, so I need to differ between these 2 states