TCP retransmitions - incomming from DMVPN to IPSEC Route Based

vivarock12 · January 19, 2025, 11:07am

Hello,

Im having troubles moving traffic from a DMVPN from the mobile WAN interface to a IPSEC tunnel thats using a wire WAN.

some context
Before i had a RUT240 for the DMVPN with a internal connection to another router that manage the IPSEC tunnel, after that we bougth a RUT11X to use for the DMVPN and the IPSEC as a concentrator.

the DMVPN is working for the lan but cant reach what after the IPSEC tunnel.

here a diagram

i have created varius zones forwarding to permitr traffic to pass between zones.

i also add rules to permit traffic to pass from interface to interface:

what can be done in this case i found that some was having a similar problem as me if im not mistaken:

TCP [FIN-ACK] packets for HTTPS traffic are dropped - NETWORKING SOLUTIONS - Teltonika Community

i see a lot of retrasmision from traffic:

can any body give me an idea of what to do?

vivarock12 · January 19, 2025, 12:40pm

just tested puting MTU on the DMVPN configuration to 1400 on the hub and all the remotes nodes dindt work.

rollback the change the DMVPN remote devices reconnected to the hub.

any other thing?

vivarock12 · January 22, 2025, 2:43pm

alguien mas ha tenido este problema?

vivarock12 · February 12, 2025, 12:29am

Changing the MTU on the camaras solved to 1300.