D-Link Forums

The Graveyard - Products No Longer Supported => Routers / COVR => DIR-330 => Topic started by: Sprocket999 on February 17, 2009, 04:28:11 PM

Title: DIR-330 '2' DIR-330 VPN keeps collapsing!!
Post by: Sprocket999 on February 17, 2009, 04:28:11 PM

 :-[  Soap Box:
For more years than can remember have used Dlink products (since first L??? didn’t work) and always have been first choice. Just acquired 3 DIR-330’s, (far cry from the 3 DI-824VUP’s we’re replacing).

Set up Main site, computer always on (non-computer person at location); have set up 2 outposts with VPN tunnels to main site. The DIR-330 builds the tunnel quickly and works smooth for a while, by the next morning the tunnel has collapsed and the router at both ends have to be rebooted in order to make a tunnel again.

The log fills up with failed attempts to regain connection. I get the impression the tunnel goes down and the routers no longer accept messages from the other router nor know to close the tunnel clean out the registers to wait for the next data session to reinstate the tunnel.

Feb 17 18:02:49  Debug Information IPSec   "conn_ED-WOD" #92: max number of retransmissions (20) reached STATE_MAIN_I1. No acceptable response to our first IKE message


I have copied the logs from both routers with the Debug information. The tunnel starts ok after reboot at both ends, what should I look at or do to keep the tunnels from collapsing and/or allow them to quit and rebuild when needed.

One more item, any NEAR future plans to allow the USB port to print serve like the VUP’s did??

Title: Re: DIR-330 '2' DIR-330 VPN keeps collapsing!!
Post by: Fatman on February 18, 2009, 08:37:32 AM

How do your DPD and Keep alive settings look?

As far as the USB port, not to my knowledge, but even if I did have knowledge of such plans I wouldn't be able to disclose it.

Title: Re: DIR-330 '2' DIR-330 VPN keeps collapsing!!
Post by: Sprocket999 on February 18, 2009, 08:43:05 AM

Keep alive 'None' I was expecting the tunnel to close down and wait to rebuild as the DI-824VUP would do.

Lifetime IKE 14400, IPSec 3600

Title: Re: DIR-330 '2' DIR-330 VPN keeps collapsing!!
Post by: Fatman on February 18, 2009, 11:20:22 AM

Any particular reason you changed the IKE lifetime from defaults?

Does keep alive prevent issues?

Title: Re: DIR-330 '2' DIR-330 VPN keeps collapsing!!
Post by: Sprocket999 on February 18, 2009, 12:58:16 PM

No, little brother set these up the night before he left to return to Vienna. I’m just trying to pick up the slack; he’s the real computer person. I presume he was using similar settings from the VUP’s.  I have read the help files and find the descriptions and parameters limited for someone trying to get to speed.

He wants Endpoint VPN’s so the routers do the work and not the computers, our main site he connects to from Vienna and uses proxies he has set up for US colleges. Just would like to set these up to work as reliable as the VUP’s did. Connect for how ever long needed, get ready for next session gracefully without rebooting to start new VPN.

I faked a new connection to see the defaults; I will set DPD and Lifetime to this and see what difference it makes.
 ;D