• March 28, 2024, 11:26:50 PM
  • Welcome, Guest
Please login or register.

Login with username, password and session length
Advanced search  

News:

This Forum Beta is ONLY for registered owners of D-Link products in the USA for which we have created boards at this time.

Author Topic: Outgoing Connection Being Dropped?  (Read 13248 times)

ggothreau

  • Level 1 Member
  • *
  • Posts: 1
Outgoing Connection Being Dropped?
« on: December 09, 2016, 11:36:16 AM »

Hi all,

Starting sometime last night (over 12 hours ago) I was suddenly disconnected from a remote server while I was working, and I can no longer connect to that one server. Nothing had changed on either my network or the remote server before this happened.

This issue is only happening when I try connecting through this DIR-820L device. Connecting directly through my cable modem or using cellular data is no problem, those connect as expected. It is also only happening with this one server.

I have tried:
  • Updating firmware on the DIR-820L -- didn't help
  • Doing a factory reset -- didn't help
  • Doing a hard / physical reset (holding down the reset button for 10 (and then 30) seconds -- didn't help
  • Connecting via both ethernet and wireless -- didn't help
  • Connecting directly to my cable modem, bypassing the DIR-820L router -- was able to connect
  • Connecting via my cell phone / cellular data -- was able to connect
  • Connecting from another computer on the DIR-820L's network -- didn't help

After trying all of these things I am left with the conclusion that the issue is with the DIR-820L.

SSH, HTTP and other applications on different ports are not connecting via the router.

Interestingly, HTTP will partially connect (some data will get through) before the connection dies.

SSH is able to connect and get the server's SSH version, but the connection dies while it is trying to negotiate the protocol. Here is debug information from SSH as it tries to connect:

Code: [Select]
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_6.2
debug1: Remote protocol version 2.0, remote software version OpenSSH_6.6.1
debug1: match: OpenSSH_6.6.1 pat OpenSSH*
debug1: SSH2_MSG_KEXINIT sent

After SSH2_MSG_KEXINIT is sent the connection dies and nothing is received from the server again.

And on the server's side, it sees that it is disconnecting before the authorisation portion of the protocol starts.

Code: [Select]
Dec  9 14:04:13 username sshd[6453]: Connection closed by <My IP> [preauth]
Now what is really odd is that in the router's logs I am seeing messages like this when trying to connect via SSH:

Code: [Select]
Dec  9 13:18:02 HARAMBE user.emerg kernel: DROP: IN=br0 OUT=eth1 SRC=<My local IP> DST=<Remote server's IP> LEN=64 TOS=0x00 PREC=0x00 TTL=64 ID=16264 DF PROTO=TCP SPT=64747 DPT=222 SEQ=2698952732 ACK=3242161784 WINDOW=4117 RES=0x00 ACK FIN URGP=0 OPT (0101080A20C5758200DE25C101010
That ACK FIN packet is really confusing me.

To reiterate: this problem is only happening with one server, it started happening arbitrarily last night, and I can connect to the server fine from other connections that aren't going through the DIR-820L router.

I do not have the firewall, QoS, virtual servers, etc., turned on. And this problem happens both with ethernet and wireless.

Is there some kind of outbound firewall that is blocking my connection? Why is the IN interface labelled br0 (ie a bridge)?

I am wondering if anybody else has had this problem, has any insights or suggestions; or if I should just trash this router and move to another brand (as I always seem to have random unexplainable problems like this with D-Link brand devices).

Thanks in advance!

Logged

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49923
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Re: Outgoing Connection Being Dropped?
« Reply #1 on: December 09, 2016, 12:14:58 PM »

Link>Welcome!

  • What Hardware version is your router? Look at sticker under the router case.
  • Link>What Firmware version is currently loaded? Found on the routers web page under status.
  • What region are you located?
  • Has a Factory Reset been performed?
  • Was a Factory Reset performed before and after any firmware updates then set up from scratch?
  Link> >FW Update Process


Internet Service Provider and Modem Configurations
  • What ISP Service do you have? Cable or DSL?
  • What ISP Modem Mfr. and model # do you have?
  • Is ISP Modem/Service using Dynamic or Static WAN IP addressing?
  • What ISP Modem service link speeds UP and Down do you have? Link> Speed Testing Sites
  • Check cable between Modem and Router, swap out to be sure. Link> Cat6 is recommended.
  • Check ISP MTU requirements, Cable is usually 1500, DSL is around 1492 down to 1472. Call the ISP and ask. Link>Checking MTU Values
  • For DSL/PPPoE connections on the router, ensure that "Always ON" option is enabled.

Router and Wired Configurations
Some things to try: - Log into the routers web page at 192.168.0.1. Use IE, Opera or FF to manage the router. Be sure to log into the Admin account on the router.
  • Turn off Advanced DNS Services if you have this option under Setup/Internet/Manual or under Setup/PARENTAL CONTROL/Set to>None: Static IP or Obtain Automatically From ISP.
  • Enable or Disable Use Unicasting (compatibility for some ISP DHCP Servers) and test under Setup/Internet/Manual. Disable may help with speed performance on higher speed ISP services.
  • Turn off DNS Relay under Setup/Networking. Link>Finding Faster DNS Addresses using Name Bench and input new DNS addresses under Setup/Internet/Manual.
  • Setup DHCP reserved IP addresses for all devices ON the router. Setup/Networking. This ensures each devices gets its own IP address when turned on and connected, eliminates IP address conflicts and helps in troubleshooting and maintain consistency for applications that need to connect as well as mapped drives.
  • Ensure devices are set to auto obtain an IP address.
  • If IPv6 is an option on the router, select Local Connection Only under Setup/IPv6.
  • Set Firewall settings to Endpoint Independent for TCP and UDP under Advanced/Firewall. Enable or Disable SPI to test.
  • Enable uPnP and Multi-cast Streaming under Advanced/Networking. Disable uPnP for testing Port Forwarding rules. Enable IPv6 Multi-cast Streaming for routers that have a Media Server option. Disable IPv6 Multi-cast Streaming if IPv6 or Media Server is not being used.
  • Turn off WISH, and WPS under Advanced.
  • WAN Port Speed set to Auto or specific speed? Some newer ISP modems support 1000Mb so manually setting to Gb speeds can be supported by the router. Advanced/Advanced Networking/WAN Port Speed
>WAN and LAN Connection Rates and ISP Speeds FAQ
Logged
Cable: 1Gb/50Mb>NetGear CM1200>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-LX1870,857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.