After upgrade our RUTX11 from 7.13.2 to 7.14.2 with “Keep settings” we lost it, no Wireguard Tunnels anymore. After a one hour drive we found our router working without any connection to our remote sites.
We have two Wireguard Tunnels, one to a FritzBox, the second to a Ubuntu V-Server. Both were shown with “wg show”, but there was not traffic at all.
written from memory..
root@teltonika:~# wg show
interface: wgth
public key:
private key: (hidden)
listening port: 51820
peer:
preshared key: (hidden)
endpoint: :54109
allowed ips: 192.168.168.168/32
latest handshake: 480 seconds ago
transfer: 0 KiB received, 15 KiB sent
persistent keepalive: every 25 seconds
interface: wg0
public key:
private key: (hidden)
listening port: 51821
peer:
endpoint: :51820
allowed ips: 192.168.9.0/24
latest handshake: 480 seconds ago
transfer: 0 MiB received, 15 KiB sent
persistent keepalive: every 25 seconds
I had no idea what to do, restarts of all components does not solve this issue.
Finally did a downgrade to 7.13.2 and did a restore of a existing backup.
Hope you dont mind if I ask a question:
how do you do a downgrade - there doesn’t seem to be a menu item for it.
do you just download the 7.13.2 release,
install without keeping settings,
then restore settings from a backup?
the ability to restore a previous version would be very handy.
Yep, that’s how I did it. I was on 7.13.4 and had upgraded to 7.14.0 then 7.14.1.
a) on 7.14.1, I Factory Reset the router
b) I downloaded the previous 17.13.4 firmware and installed it with ‘keep settings’ off
c) on 7.13.4, I restored a backup
d) I then installed firmware 7.14.2 with ‘keep settings’ on
Hello Alienheartbeat,
I have downloaded the 7.13.2 release from their website. A install (downgrade) with “keep settings” is not possible with Teltonika equipment. So the config is being erased and you have to be there.
I was lucky because I had a backup made with this 7.13 release, so I was able to restore its config. I have learned, that I will always do a backbup before updating. Unfortunately, I have to be on site.
Furthermore, the restore lost some items. 2 of 5 DHCP static adresses were not restored, another hour of downtime.
Thomas
Thanks Mike, good to know.
I always do backups before upgrading,
though if you are upgrading multiple levels (say 7.12 → 7.14.2)
and you downgrade to (say) 7.13.4,
the restore settings may still create problems.
completely agree - I don’t dare do upgrades unless I am on site.
That is why I was upgrading the X11 from 7.11.3 → 7.14.2,
as I wasn’t in that country for 3 months.
The upgrade went poorly, many problems,
so I did a full reset and am re-entering all my settings.
In future I may be able to copy in my ip assignments from /etc/dhcp and port forward rules from /etc/firewall which will save the most time, compared to the pain of reentering them manually.
Could you please confirm whether the initial issue is still present? Would it be possible for you to upgrade to the latest 7.14.3 firmware release, which is available at the moment, and check whether the issue replicates?
If the problem with the WireGuard tunnels not coming up persists after the update, I’ll need to investigate this in more depth. In that case, we’ll handle the communication privately to gather the necessary information and logs.
Please let me know how it goes after testing with the latest firmware.
Thanks Martynas for the reply,
our site is a one hour drive away, so I cannot do an update from remote. Our next visit is planned for the 21.06.25
I will do an upgrade.
Thomas
Today I was in the area and I had an hour to test your suggested firmware 7.14.3. I wonder what has changed covering our issue, I do not found something in the release notes.
I was on site and did the update to 7.14.3 and the tunnels did not came up anymore. Same issue as with 7.14.2. I think there is a packet forwarding or firewall problem inside. I have checked the two wireguard peers, both got no wireguard handshakes any more. Than I did a “wg show” on the teltonika. The same, no handshakes any more. I switched both tunnels down/up on the Teltonika with no success. Wireguard is broken, so I had to revert to 7.13.2. This is very annoying, because the router losts all its config at a downgrade. I played back my backup.
Thank you for the update. In this case, I believe, to assist you effectively, we’ll need to continue this process privately. You should find a support request form in the inbox of the email address you used for your forum registration. Kindly fill out the form, and please reference Ticket ID: 13816 when submitting it. Once the form is completed, we’ll contact you directly via email to investigate the issue in detail and help work towards a solution.