This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

RED constantly disconnecting / unstable tunnel

Hi,

 

I recenetly installed a RED at a remote site and cousn't get it to provide a stable connection back to our UTM. 

 

Looking at the UTM logs it constantly cycles with the following

 

2019:03:15-07:18:34 bch-sophosutm-aimes red_server[18177]: SELF: New connection from 195.188.243.4 with ID A3501B004319705 (cipher AES256-GCM-SHA384), rev1
2019:03:15-07:18:34 bch-sophosutm-aimes red_server[18177]: A3501B004319705: already connected, releasing old connection.
2019:03:15-07:18:34 bch-sophosutm-aimes red_server[17817]: id="4202" severity="info" sys="System" sub="RED" name="RED Tunnel Down" red_id="A3501B004319705" forced="1"
2019:03:15-07:18:34 bch-sophosutm-aimes red_server[17817]: A3501B004319705 is disconnected.
2019:03:15-07:18:36 bch-sophosutm-aimes red_server[18177]: A3501B004319705: connected OK, pushing config
2019:03:15-07:18:40 bch-sophosutm-aimes red_server[18177]: A3501B004319705: command 'UMTS_STATUS value=OK'
2019:03:15-07:18:40 bch-sophosutm-aimes red_server[18177]: A3501B004319705: command 'PING 0 uplink=WAN'
2019:03:15-07:18:40 bch-sophosutm-aimes red_server[18177]: id="4201" severity="info" sys="System" sub="RED" name="RED Tunnel Up" red_id="A3501B004319705" forced="0"
2019:03:15-07:18:40 bch-sophosutm-aimes red_server[18177]: A3501B004319705: PING remote_tx=0 local_rx=0 diff=0
2019:03:15-07:18:40 bch-sophosutm-aimes red_server[18177]: A3501B004319705: PONG local_tx=0
2019:03:15-07:18:55 bch-sophosutm-aimes red_server[18177]: A3501B004319705: command 'PING 0 uplink=WAN'
2019:03:15-07:18:55 bch-sophosutm-aimes red_server[18177]: A3501B004319705: PING remote_tx=0 local_rx=0 diff=0
2019:03:15-07:18:55 bch-sophosutm-aimes red_server[18177]: A3501B004319705: PONG local_tx=0
2019:03:15-07:19:10 bch-sophosutm-aimes red_server[18177]: A3501B004319705: command 'PING 0 uplink=WAN'
2019:03:15-07:19:10 bch-sophosutm-aimes red_server[18177]: A3501B004319705: PING remote_tx=0 local_rx=0 diff=0
2019:03:15-07:19:10 bch-sophosutm-aimes red_server[18177]: A3501B004319705: PONG local_tx=0
2019:03:15-07:19:11 bch-sophosutm-aimes red_server[18177]: A3501B004319705: command 'SYSSTATE unstable peer using stabilization timeout 30'
2019:03:15-07:19:11 bch-sophosutm-aimes red_server[18177]: A3501B004319705: command 'CON_CLOSE reason=no_peer'
2019:03:15-07:19:41 bch-sophosutm-aimes red_server[18177]: A3501B004319705: No ping for 30 seconds, exiting.
2019:03:15-07:19:41 bch-sophosutm-aimes red_server[18177]: id="4202" severity="info" sys="System" sub="RED" name="RED Tunnel Down" red_id="A3501B004319705" forced="0"
2019:03:15-07:19:41 bch-sophosutm-aimes red_server[18177]: A3501B004319705 is disconnected.
2019:03:15-07:20:04 bch-sophosutm-aimes red_server[18934]: SELF: New connection from 195.188.243.4 with ID A3501B004319705 (cipher AES256-GCM-SHA384), rev1
2019:03:15-07:20:04 bch-sophosutm-aimes red_server[18934]: A3501B004319705: connected OK, pushing config
2019:03:15-07:20:11 bch-sophosutm-aimes red_server[18934]: A3501B004319705: command 'UMTS_STATUS value=OK'
2019:03:15-07:20:11 bch-sophosutm-aimes red_server[18934]: A3501B004319705: command 'PING 0 uplink=WAN'
2019:03:15-07:20:11 bch-sophosutm-aimes red_server[18934]: id="4201" severity="info" sys="System" sub="RED" name="RED Tunnel Up" red_id="A3501B004319705" forced="0"
2019:03:15-07:20:11 bch-sophosutm-aimes red_server[18934]: A3501B004319705: PING remote_tx=0 local_rx=0 diff=0
2019:03:15-07:20:11 bch-sophosutm-aimes red_server[18934]: A3501B004319705: PONG local_tx=0
2019:03:15-07:20:27 bch-sophosutm-aimes red_server[18934]: A3501B004319705: command 'PING 0 uplink=WAN'
2019:03:15-07:20:27 bch-sophosutm-aimes red_server[18934]: A3501B004319705: PING remote_tx=0 local_rx=0 diff=0
2019:03:15-07:20:27 bch-sophosutm-aimes red_server[18934]: A3501B004319705: PONG local_tx=0
2019:03:15-07:20:41 bch-sophosutm-aimes red_server[18934]: A3501B004319705: command 'PING 0 uplink=WAN'
2019:03:15-07:20:41 bch-sophosutm-aimes red_server[18934]: A3501B004319705: PING remote_tx=0 local_rx=0 diff=0
2019:03:15-07:20:41 bch-sophosutm-aimes red_server[18934]: A3501B004319705: PONG local_tx=0
2019:03:15-07:20:42 bch-sophosutm-aimes red_server[18934]: A3501B004319705: command 'SYSSTATE unstable peer using stabilization timeout 30'
2019:03:15-07:20:42 bch-sophosutm-aimes red_server[18934]: A3501B004319705: command 'CON_CLOSE reason=no_peer'
2019:03:15-07:20:47 bch-sophosutm-aimes red_server[19233]: SELF: New connection from 195.188.243.4 with ID A3501B004319705 (cipher AES256-GCM-SHA384), rev1
2019:03:15-07:20:47 bch-sophosutm-aimes red_server[19233]: A3501B004319705: already connected, releasing old connection.
2019:03:15-07:20:47 bch-sophosutm-aimes red_server[18934]: id="4202" severity="info" sys="System" sub="RED" name="RED Tunnel Down" red_id="A3501B004319705" forced="1"
 
I can see the TCP 3400 traffic from the external IP hitting our gateway, and nothing is being blocked, why is the RED unable to fully establish it's connection?


This thread was automatically locked due to age.
Parents
  • Is it the only RED connection you have or do you have others that are working as expected?


    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Reply
  • Is it the only RED connection you have or do you have others that are working as expected?


    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Children
No Data