ER605 v2.0 reboots on wireguard VPN connect

ER605 v2.0 reboots on wireguard VPN connect

ER605 v2.0 reboots on wireguard VPN connect
ER605 v2.0 reboots on wireguard VPN connect
2024-09-15 17:00:31 - last edited 2024-10-08 01:41:11
Model: ER605 (TL-R605)  
Hardware Version: V2
Firmware Version: ER605(UN)_V2_2.2.6 Build 20240718

I'm using wireguard server on the ER605 and connecting multiple clients - windows laptops.
If it matters, on the same WAN interface I have a IPsec VPN configured as well.

I upgraded to latest firmware version available for V2.0 today -  ER605(UN)_V2_2.2.6 Build 20240718 because randomly some VPNs would stop receiving traffic completly from the VPN.  Using wireshark I see only keepalives coming in, and a whole lot going out, but no responses.

My wireguard clients are configured to tunnel all traffic.

On upgrade to firmware 2.2.6 the ER605 completely reboots when a wireguard client connects with the previously created wireguard server.
I suspected some kind of bug so I deleted the old wireguard server and created a new one.
How did it fail again:
- I added the first client, connected, all looked good, disconnected the client.
- Added the second client, connected, all looked good, disconnected the client.
- Added the third client, connected, router crashed.

I'm not sure if its a core-dump or something else, but its obviously not good.
I'm downgrading to 2.2.5 now to see if the issue exists in there too, however I doubt it, because from the release notes there's been wireguard fixes in 2.2.6 only.

Edit: happens with 2.2.5 too

  0      
  0      
#1
Options
2 Accepted Solutions
Re:ER605 v2.0 reboots on wireguard VPN connect-Solution
a week ago - last edited Thursday

@SHA2

SHA2 wrote

  @Clive_A 

This also happens for me after the upgrade. You guys should really try this your self and offer a fix as not reply on us to give you a config file. Reverting to old frimware aswell

For your situation now, consider rolling back or waiting for others to work with us.

 

Asking for the config is to locate the reason and sync the information, if this bothers you, please do ignore what I have asked. 

It is really common sense to have a conversation here without your chime in some simple human logic and basic SOP to confirm a problem and information exchange.

 

As for now, for the sake of other's help, we have a preliminary conclusion that this issue would only occur when you created at least two peers with the same subnet /24. So far it seems to be the case. Rest of the 3 new reports are not provided with the configs.

 

The reason has been located that this was an improper configuration and we did not design it to be doing this. Two peers with the same subnet is meaningless in our eye.

We will optimize this in the future firmware update.

A single peer with a subnet of all /24 is already enough for most people. If you need to place them in the same subnet, you should at least specify them as /32 which I have strongly recommended in the Configuration Guide.

 

A beta will be provided next month(estimated) and the official fix will be included in the firmware of adapting V5.15.X.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
Recommended Solution
  0  
  0  
#19
Options
Re:ER605 v2.0 reboots on wireguard VPN connect-Solution
Thursday - last edited Thursday

Hi @v1ctorr and others

A beta firmware has been released. The issue was fixed in this release.

WireGuard VPN Crashes and Reboots on Connection

 

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
Recommended Solution
  0  
  0  
#22
Options
20 Reply
Re:ER605 v2.0 reboots on wireguard VPN connect
2024-09-17 14:17:31

I can confirm this is not a one of...

I'm sufering from exactly the same issue. 

ER605 v2.0 - 2.2.6 Build 20240718 - Rel.82712

 

br

  0  
  0  
#2
Options
Re:ER605 v2.0 reboots on wireguard VPN connect
2024-09-18 01:38:05

Hi @Loeschnix 

Thanks for posting in our business forum.

Post your configs and diagram. You crash at the third client as well? Who crashes, the router? What's the behavior of it? How do you verify it? 

Require screenshots for every question asked.

 

Please mosaic your sensitive information. Here is a list of information considered sensitive:

1. Public IP address on your WAN if your WAN is.

2. Real MAC address of your device.

3. Your personal information including address, domain name, and credentials.

For troubleshooting purposes, when a WAN IP is needed, please leave some values visible for identification.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  0  
  0  
#3
Options
Re:ER605 v2.0 reboots on wireguard VPN connect
2024-09-18 01:52:20

Hi @v1ctorr 

Thanks for posting in our business forum.

Post your configs and diagram, please. So, you've disconnected the first and second users, and when adding the third one, the router crashes. How did it crash? I mean specifically, how do you verify that the router is crashing and what's the behavior?

Your Wireshark results for that verification you mentioned in the description.

 

Require screenshots for every question asked.

 

Please mosaic your sensitive information. Here is a list of information considered sensitive:

1. Public IP address on your WAN if your WAN is.

2. Real MAC address of your device.

3. Your personal information including address, domain name, and credentials.

For troubleshooting purposes, when a WAN IP is needed, please leave some values visible for identification.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  1  
  1  
#4
Options
Re:ER605 v2.0 reboots on wireguard VPN connect
2024-09-18 15:02:02

I encountered the same issue. Firmware 2.2.6 Build 20240718 Rel.82712 , controlling my ER605 via Omada Controller app on Windows.

 

Whenever I connect to WG Server from my desktop PC everything is fine. But once I connect from my phone and it performs the handshake, the rooter reboots. Happens every time and there are no logs indicating any problems. Super weird and kinda annoying.

  0  
  0  
#5
Options
Re:ER605 v2.0 reboots on wireguard VPN connect
2024-09-18 15:20:15 - last edited 2024-09-18 15:31:23

Here is my configuration:

 

WG Server

 

 

WG Peers

 

 

WG config for mobile phone

 

[Interface]
PrivateKey = <private_key>
Address = 192.168.4.11/24
DNS = 1.1.1.1

[Peer]
PublicKey = <WG_server_public_key>
AllowedIPs = 0.0.0.0/0
Endpoint = 192.168.1.1:51820

 

 

  0  
  0  
#6
Options
Re:ER605 v2.0 reboots on wireguard VPN connect
2024-09-18 16:03:08

  @art3mk 

 

I would use /32 instead of /24 for allowed address. you only need to allow your own ip. also change Address = in the client file, I myself have an ER605 and do not experience the same problems as you, but as I said, I use /32

 

 

  0  
  0  
#7
Options
Re:ER605 v2.0 reboots on wireguard VPN connect
2024-09-18 16:38:05

  @MR.S, thanks, I'll try that.

  0  
  0  
#8
Options
Re:ER605 v2.0 reboots on wireguard VPN connect
2024-09-18 18:47:49

  @v1ctorr 

i have no problems with er605v2 as wireguard server and my android phone (i mostly use it to see my ip cameras):

  0  
  0  
#9
Options
Re:ER605 v2.0 reboots on wireguard VPN connect
2024-09-18 18:50:44 - last edited 2024-09-18 18:57:08

 

DNS Server is IP of ER605 in local network

Try set like this 

  0  
  0  
#10
Options
Re:ER605 v2.0 reboots on wireguard VPN connect
2024-09-29 12:42:06

  @v1ctorr I have the same issue. Wireguard was working properly before. Tried downgrading to 2.2.5, but it didn't help. Waiting for TP-Link to fix.

  0  
  0  
#11
Options