Disconnect Loop RED 15 -

Question

Hi, 
 ich have a very strange problem with the new RED 15. 
 Setting: 
 UTM 9.350-12 at the main office 
 RED 15 with static IP behind an LTE-router at the remote location 
 After the first configuration everything works fine. But after some hours the RED diconnect and reconnected every minute. 
 After a reboot of the UTM (or if i deactivate the RED for some hours) the connection is stable for some hours. 
 Here are some lines out of the RED log: 
 2015:11:10-16:42:48 che-igw01 red_server[20657]: A350124B7XXXXXX: command 'PING 0 uplink=WAN' 
 2015:11:10-16:42:48 che-igw01 red_server[20657]: A350124B7XXXXXX: PING remote_tx=0 local_rx=0 diff=0 
 2015:11:10-16:42:48 che-igw01 red_server[20657]: A350124B7XXXXXX:: PONG local_tx=0 
 2015:11:10-16:42:52 che-igw01 red_server[20939]: SELF: New connection from 2.200.175.176 with ID A350124B7XXXXXX: (cipher AES256-GCM-SHA384), rev1 
 2015:11:10-16:42:52 che-igw01 red_server[20939]: A350124B7XXXXXX:: already connected, releasing old connection. 
 2015:11:10-16:42:52 che-igw01 red_server[20657]: id="4202" severity="info" sys="System" sub="RED" name="RED Tunnel Down" red_id="A350124B7XXXXXX" forced="1" 
 2015:11:10-16:42:52 che-igw01 red_server[20657]: A350124B7XXXXXX: is disconnected. 
 2015:11:10-16:42:52 che-igw01 red2ctl[4266]: Overflow happened on reds2:0 
 2015:11:10-16:42:52 che-igw01 red2ctl[4266]: Missing keepalive from reds2:0, disabling peer 2.200.XXX.XXX 
 2015:11:10-16:42:52 che-igw01 red_server[4255]: SELF: (Re-)loading device configurations 
 2015:11:10-16:42:53 che-igw01 red_server[20939]: A350124B7XXXXXX:: connected OK, pushing config 
 2015:11:10-16:42:53 che-igw01 red_server[20939]: A350124B7XXXXXX:: Sending PEERS+178.15.XXX.XXX 
 2015:11:10-16:42:57 che-igw01 red_server[20939]: A350124B7XXXXXX:: command 'UMTS_STATUS value=OK' 
 2015:11:10-16:42:57 che-igw01 red_server[20939]: A350124B7XXXXXX:: command 'PING 0 uplink=WAN' 
 2015:11:10-16:42:57 che-igw01 red_server[20939]: id="4201" severity="info" sys="System" sub="RED" name="RED Tunnel Up" red_id="A350124B7XXXXXX:" forced="0" 
 2015:11:10-16:42:57 che-igw01 red_server[20939]: A350124B7XXXXXX:: PING remote_tx=0 local_rx=0 diff=0 
 2015:11:10-16:42:57 che-igw01 red_server[20939]: A350124B7XXXXXX:: PONG local_tx=0 
 2015:11:10-16:42:58 che-igw01 red_server[4255]: SELF: (Re-)loading device configurations 
 2015:11:10-16:42:59 che-igw01 red2ctl[4266]: Missing keepalive from reds2:0, disabling peer 2.200.XXX.XXX 
 2015:11:10-16:43:02 che-igw01 red2ctl[4266]: Received keepalive from reds2:0, enabling peer 2.200.XXX.XXX 
 2015:11:10-16:43:11 che-igw01 red_server[20939]: A350124B7XXXXXX:: command 'PING 0 uplink=WAN' 
 2015:11:10-16:43:11 che-igw01 red_server[20939]: A350124B7XXXXXX:: PING remote_tx=0 local_rx=0 diff=0 
 2015:11:10-16:43:11 che-igw01 red_server[20939]: A350124B7XXXXXX:: PONG local_tx=0 
 2015:11:10-16:43:26 che-igw01 red_server[20939]: A350124B7XXXXXX:: command 'PING 0 uplink=WAN' 
 2015:11:10-16:43:26 che-igw01 red_server[20939]: A350124B7XXXXXX:: PING remote_tx=0 local_rx=0 diff=0 
 2015:11:10-16:43:26 che-igw01 red_server[20939]: A350124B7XXXXXX:: PONG local_tx=0 
 2015:11:10-16:43:30 che-igw01 red_server[21136]: SELF: New connection from 2.200.XXX.XXX with ID A350124B7XXXXXX: (cipher AES256-GCM-SHA384), rev1 
 2015:11:10-16:43:30 che-igw01 red_server[21136]: A350124B7XXXXXX:: already connected, releasing old connection. 
 2015:11:10-16:43:30 che-igw01 red_server[20939]: id="4202" severity="info" sys="System" sub="RED" name="RED Tunnel Down" red_id="A350124B7XXXXXX:" forced="1" 
 2015:11:10-16:43:31 che-igw01 red_server[20939]: A350124B7XXXXXX: is disconnected. 
 2015:11:10-16:43:31 che-igw01 red_server[4255]: SELF: (Re-)loading device configurations 
 2015:11:10-16:43:32 che-igw01 red2ctl[4266]: Overflow happened on reds2:0 
 2015:11:10-16:43:32 che-igw01 red2ctl[4266]: Missing keepalive from reds2:0, disabling peer 2.200.XXX.XXX 
 2015:11:10-16:43:32 che-igw01 red_server[21136]: A350124B7XXXXXX:: connected OK, pushing config 
 2015:11:10-16:43:32 che-igw01 red_server[21136]: A350124B7XXXXXX:: Sending PEERS+178.15.XXX.XXX 
 2015:11:10-16:43:35 che-igw01 red2ctl[4266]: Overflow happened on reds2:0 
 2015:11:10-16:43:35 che-igw01 red2ctl[4266]: Missing keepalive from reds2:0, disabling peer 2.200.XXX.XXX 
 2015:11:10-16:43:35 che-igw01 red_server[21136]: A350124B7XXXXXX:: command 'UMTS_STATUS value=OK' 
 2015:11:10-16:43:35 che-igw01 red_server[21136]: A350124B7XXXXXX:: command 'PING 0 uplink=WAN' 
 2015:11:10-16:43:35 che-igw01 red_server[21136]: id="4201" severity="info" sys="System" sub="RED" name="RED Tunnel Up" red_id="A350124B7XXXXXX:" forced="0" 
 2015:11:10-16:43:35 che-igw01 red_server[21136]: A350124B7XXXXXX:: PING remote_tx=0 local_rx=0 diff=0 
 2015:11:10-16:43:35 che-igw01 red_server[21136]: A350124B7XXXXXX:: PONG local_tx=0 
 2015:11:10-16:43:41 che-igw01 red2ctl[4266]: Received keepalive from reds2:0, enabling peer 2.200.XXX.XX 
 
 Other RED devices (RED10) at the same UTM works fine. 
 
 Any ideas?

SGICT · Answer

A customer of ours had this issue recently with RED 15 using Satellite broadband (Avonline). In the end the ISP was either blocking port 3410 OR DDOS Protection on their infrastructure was to blame. The customer contacted them and after a couple days it was fixed.

TedReynolds · Answer

Hi,

With the new RED 15 devices, they are using REDv2 protocol, which requires UDP port 3410 and TCP port 3400 to be open.

This will allow for the connection to be established properly.

As the RED 10 devices only require TCP port 3400 to be open, that would explain why those work without issues.

Let me know if that works.

Thanks,

Ted Reynolds