I'm having an issue with regular frequent loss of WAN connectivity on my ERLite-3. The outages are always the same duration and the timing is of two frequencies.
My config is: Zyxel VDSL in full bridge mode -> ERLite-3 eth0=WAN eth1=LAN -> TP-link GBit switch
I've isolated each piece of hardware and determined that it is the ERLite-3 that is causing the outage.
Am currently running 1.8.5 Beta 2 but previously was 1.8.0 - upgraded firmware to see if any difference in behaviour. I'm unsure how to proceed - never seen anything like this before. This started happening 2x days ago, with no configuration changes (hardware or software - I was out of the city when it started happening).
/var/log/messages http://pastebin.com/043UWXn7
admin@router# show
firewall {
all-ping enable
broadcast-ping disable
group {
}
ipv6-receive-redirects disable
ipv6-src-route disable
ip-src-route disable
log-martians enable
name WAN_IN {
default-action drop
description "WAN to internal"
rule 1 {
action accept
description "Allow established/related"
log disable
state {
established enable
invalid disable
new disable
related enable
}
}
rule 2 {
action accept
description LIFX
destination {
port 56700
}
log disable
protocol tcp_udp
}
rule 3 {
action drop
description "Drop invalid state"
state {
invalid enable
}
}
}
name WAN_LOCAL {
default-action drop
description "WAN to router"
rule 1 {
action accept
description "Allow established/related"
state {
established enable
related enable
}
}
rule 2 {
action accept
description "allow pings"
log disable
protocol icmp
state {
established enable
invalid enable
new enable
related enable
}
}
rule 3 {
action accept
destination {
port 56700
}
log disable
protocol tcp_udp
}
rule 4 {
action accept
description "remote GUI access"
destination {
port 443
}
log disable
protocol tcp
}
rule 5 {
action drop
description "Drop invalid state"
state {
invalid enable
}
}
}
options {
mss-clamp {
mss 1412
}
}
receive-redirects disable
send-redirects enable
source-validation disable
syn-cookies enable
}
interfaces {
ethernet eth0 {
address dhcp
description "Internet (PPPoE)"
duplex auto
pppoe 0 {
default-route auto
firewall {
in {
name WAN_IN
}
local {
name WAN_LOCAL
}
}
mtu 1492
name-server auto
password bigpipe
user-id bigpipe
}
speed auto
}
ethernet eth1 {
address 192.168.0.1/24
description LAN1
duplex auto
speed auto
}
ethernet eth2 {
address 192.168.1.1/24
description WIFI
disable
duplex auto
speed auto
}
loopback lo {
}
openvpn vtun0 {
config-file /config/auth/sjc-a04.ovpn
description "Newshosting.com VPN"
disable
}
}
port-forward {
auto-firewall enable
hairpin-nat enable
lan-interface eth1
rule 1 {
description plex
forward-to {
address 192.168.0.10
port 32400
}
original-port 8080
protocol tcp_udp
}
rule 2 {
description UnRAID
forward-to {
address 192.168.0.10
port 80
}
original-port 55555
protocol tcp_udp
}
rule 3 {
description "UnRAID SSH"
forward-to {
address 192.168.0.10
port 22
}
original-port 22222
protocol tcp_udp
}
rule 4 {
description "UnRAID SSH GUI"
forward-to {
address 192.168.0.10
port 4200
}
original-port 22223
protocol tcp_udp
}
rule 5 {
description PlexRequests
forward-to {
address 192.168.0.10
port 3000
}
original-port 3000
protocol tcp_udp
}
rule 6 {
description rtorrent
forward-to {
address 192.168.0.10
port 53444
}
original-port 53444
protocol tcp_udp
}
rule 7 {
description "rtorrent DHT"
forward-to {
address 192.168.0.10
port 9527
}
original-port 9527
protocol tcp_udp
}
rule 8 {
description ttrss
forward-to {
address 192.168.0.10
port 88
}
original-port 88
protocol tcp_udp
}
rule 9 {
description emby
forward-to {
address 192.168.0.10
port 8096
}
original-port 8920
protocol tcp_udp
}
rule 10 {
description "entry cam"
forward-to {
address 192.168.0.201
port 554
}
original-port 44201
protocol tcp_udp
}
rule 11 {
description "front cam"
forward-to {
address 192.168.0.202
port 554
}
original-port 44202
protocol tcp_udp
}
rule 12 {
description "back cam"
forward-to {
address 192.168.0.203
port 80
}
original-port 44203
protocol tcp_udp
}
rule 13 {
description muximux
forward-to {
address 192.168.0.10
port 81
}
original-port 8081
protocol tcp_udp
}
rule 14 {
description plexpy
forward-to {
address 192.168.0.10
port 8181
}
original-port 8181
protocol tcp_udp
}
rule 15 {
description sonarr
forward-to {
address 192.168.0.10
port 8989
}
original-port 8989
protocol tcp_udp
}
wan-interface pppoe0
}
protocols {
static {
}
}
service {
dhcp-server {
disabled false
hostfile-update disable
shared-network-name LAN1 {
authoritative disable
subnet 192.168.0.0/24 {
default-router 192.168.0.1
dns-server 192.168.0.1
dns-server 8.8.8.8
lease 86400
start 192.168.0.100 {
stop 192.168.0.199
}
static-mapping Lounge-moode {
ip-address 192.168.0.155
mac-address b8:27:eb:1f:65:35
}
static-mapping ROON-WIN10-VM {
ip-address 192.168.0.130
mac-address 52:54:00:af:eb:fd
}
}
}
shared-network-name LAN2 {
authoritative disable
disable
subnet 192.168.1.0/24 {
default-router 192.168.1.1
dns-server 192.168.1.1
domain-name warrenhughes.net
lease 86400
start 192.168.1.38 {
stop 192.168.1.243
}
}
}
}
dns {
forwarding {
cache-size 150
listen-on eth1
listen-on eth2
}
}
gui {
https-port 443
}
nat {
rule 5000 {
description modem
destination {
address 192.168.1.1
}
disable
log disable
outbound-interface eth0
protocol all
source {
}
type masquerade
}
rule 5001 {
description "masquerade for WAN"
log disable
outbound-interface pppoe0
protocol all
type masquerade
}
}
ssh {
port 22
protocol-version v2
}
upnp {
listen-on eth1 {
outbound-interface pppoe0
}
}
}
system {
domain-name router.warrenhughes.net
host-name router
login {
user admin {
authentication {
encrypted-password $6$35rZRieSE0xa$P7b0/dH3Dd/R5bGBCe7MQE5pWp/hMS5QFmggHU5DOPkEn1GQLWTl9TpDxj7ZiZl0cVOTS/Wvqg9u4oJGIKYVN0
plaintext-password ""
}
level admin
}
user ubnt {
authentication {
encrypted-password $6$BEtnIL639Dh/gJkg$J.5uRjm5CrX6TwU6H3ZFkNGaGLOB1q8eE8JgyeAYOn8E4Ri5CCvFEwU530Pd7rqSNae8y5mbRL.QYWM/LPZVI/
plaintext-password ""
}
full-name ""
level admin
}
}
name-server 8.8.8.8
ntp {
server 0.ubnt.pool.ntp.org {
}
server 1.ubnt.pool.ntp.org {
}
server 2.ubnt.pool.ntp.org {
}
server 3.ubnt.pool.ntp.org {
}
}
package {
repository wheezy {
components "main contrib non-free"
distribution wheezy
password ""
url http://http.us.debian.org/debian
username ""
}
repository wheezy-security {
components main
distribution wheezy/updates
password ""
url http://security.debian.org
username ""
}
}
syslog {
global {
facility all {
level notice
}
facility protocols {
level debug
}
}
}
time-zone Pacific/Auckland
traffic-analysis {
custom-category BT {
name "BitTorrent Series"
name uTorrent
name BBtor
name DelugeTorrent
}
dpi disable
export disable
}
}
traffic-control {
}
[edit]