Business Community > Gateways > Gateway second site disconnected after firmware upgrade ER605 (from 2.3.0 to 2.3.1)
< Gateways

Gateway second site disconnected after firmware upgrade ER605 (from 2.3.0 to 2.3.1)

Gateway second site disconnected after firmware upgrade ER605 (from 2.3.0 to 2.3.1)

Gateway second site disconnected after firmware upgrade ER605 (from 2.3.0 to 2.3.1)
Gateway second site disconnected after firmware upgrade ER605 (from 2.3.0 to 2.3.1)
a week ago - last edited Monday
Tags: #Firmware Update
Model: ER605 (TL-R605)  
Hardware Version: V2
Firmware Version: 2.3.1 Build 20251015 Rel.78291

I manage two sites with my OC200 v1.0 controller. The gateway of the secondary site reports over internet into the controller which is located in my primary site.

 

Setup of primary site:

1 x OC200 v1.0 controller (firmware 1.36.7 Build 20250707 Rel.72474)

1 x ER605 v2.0 gateway (firmware 2.3.0 Build 20250428 Rel.18967)

2 x SG2210P v5.20 switch (firmware 5.20.14 Build 20250928 Rel.82909)

1 x ES205G v1.0 switch (firmware 1.0.4 Build 20250609 Rel.74647)

5 x EAP615-Wall(EU) v1.0 access points (firmware 1.5.4 Build 20250515 Rel. 67108)

2 x EAP225-Outdoor(EU) v1.0 access points (firmware 5.2.3 Build 20250709 Rel. 67584)

2 x EAP230-Wall(EU) v1.0 access points (firmware 3.2.5 Build 20250904 Rel. 65179)

 

Setup of secondary site:

1 x ER706W v1.0 wi-fi gateway (firmware 1.2.2 Build 20250821 Rel.60581(4555))

1 x EAP225-Outdoor(EU) v1.0 access point (firmware 5.2.3 Build 20250709 Rel. 67584)

 

Yesterday evening I upgraded my ER605 v2.0 gateway of my main site to firmware 2.3.1 Build 20251015 Rel.78291 to fix the command injection and root access vulnerabilities on Omada gateways. After the upgrade the ER706W v1.0 wi-fi gateway of my secondary site is not reporting into my OC200 v1.0 over internet anymore. It shows as 'DISCONNECTED'. Since I don't have physical access to my secondairy site, I cannot reboot the gateway.

 

Edit: Someone who has physical access to my secondairy site rebooted the gateway, but this did not resolve the issue.

 

Does someone recognize this behavior and knows how to resolve this?

 

  0      
 
  0      
 
#1
Options
1 Accepted Solution
Re:Gateway second site disconnected after firmware upgrade ER605 (from 2.3.0 to 2.3.1)-Solution
Monday - last edited Monday

Hi  @WM1 

 

Thanks for posting here.

 

This update only resolves several security vulnerabilities and should not have much impact on remote management.

Have you checked if the port settings are still normal? Did this update change the router's WAN IP? If everything is normal, but the ER706W is offline in the controller and we cannot remotely modify it, the fastest fix might be to reset the ER706W locally and attempt to re-manage it.

 

Reminder: This process will interrupt the network, so it's recommended to perform it when the network is not in use.

Wish you a happy life and smooth network usage!  >Omada US Enterprise Beta Program Launch< >Get the Latest Omada SDN Controller Releases Here< >Experience the Latest Omada EAP Firmware<
Recommended Solution
  0  
  0  
#3
Options
7 Reply
Re:Gateway second site disconnected after firmware upgrade ER605 (from 2.3.0 to 2.3.1)
Friday

Hi @Ethan-TP, making you aware of this issue.

 

Unfortunately, I haven't been able to resolve it yet. The secondary site is fully functional, but it no longer reports to the controller, meaning I can no longer manage it remotely.

 

Interestingly, a few months ago I updated the ER605 v2.0 gateway to firmware 2.3.0 Build 20250428 Rel.18967, which didn't cause any problems after the update and restarting the gateway. This suggests that the issue is caused by changes in the new firmware. Can you please have this checked? Thanks in advance.

  0  
  0  
#2
Options
Re:Gateway second site disconnected after firmware upgrade ER605 (from 2.3.0 to 2.3.1)-Solution
Monday - last edited Monday

Hi  @WM1 

 

Thanks for posting here.

 

This update only resolves several security vulnerabilities and should not have much impact on remote management.

Have you checked if the port settings are still normal? Did this update change the router's WAN IP? If everything is normal, but the ER706W is offline in the controller and we cannot remotely modify it, the fastest fix might be to reset the ER706W locally and attempt to re-manage it.

 

Reminder: This process will interrupt the network, so it's recommended to perform it when the network is not in use.

Wish you a happy life and smooth network usage!  >Omada US Enterprise Beta Program Launch< >Get the Latest Omada SDN Controller Releases Here< >Experience the Latest Omada EAP Firmware<
Recommended Solution
  0  
  0  
#3
Options
Re:Gateway second site disconnected after firmware upgrade ER605 (from 2.3.0 to 2.3.1)
Monday

Hi @Vincent-TP, you mention "This update only resolves several security vulnerabilities and should not have much impact on remote management". Indeed, it should not have much impact on remote management, but it had.

 

As mentioned, the only thing that changed was the firmware. Everything else is still the same, the port settings, NAT and WAN IP didn't change and still the remote site doesn't report back. With an earlier update of the same ER605 gateway, eveything was fine. Also I preventively scheduled a monthly reboot of all components of both sites. This never lead to any issues.

 

You seem to have marked your reponse as Recommended Solution, to which I tend to disagree. Nothing is resolved.

 

What you ask ("... the fastest fix might be to reset the ER706W locally and attempt to re-manage it") is not in agreement with remote management. The whole point is that I do not have physical access to my secundairy site, simply because it's in another country which is why I decided to remote manage it with my Omada controller which was always reliable for several years until now.

 

Is there something else that you can suggest?

  0  
  0  
#4
Options
Re:Gateway second site disconnected after firmware upgrade ER605 (from 2.3.0 to 2.3.1)
Tuesday

  @WM1 

 

I have 4 remote ER605 v2 all updated to 2.3.1 - none of them lost Controller connection.  3 of them are adopted inside vpn, one of them is adopted over WAN port forward - no issues.

 

What method of adoption are you using? WAN port forwarding or inside a site-to-site VPN ?

  0  
  0  
#5
Options
Re:Gateway second site disconnected after firmware upgrade ER605 (from 2.3.0 to 2.3.1)
Tuesday

Hi @GRL, I use WAN port forwarding at this moment.

 

I was considering setting up a site-to-site VPN when I recently visited my second site, but I didn't have the time to make the necessary adjustments across the two sites (like adjusting the VLANs and Subnets).

 

By the way, it is not that the ER605 V2 doesn't report in, it is the ER706W gateway from the second site not reporting in.

  0  
  0  
#6
Options
Re:Gateway second site disconnected after firmware upgrade ER605 (from 2.3.0 to 2.3.1)
Wednesday - last edited Wednesday

  @WM1 

 

if you roll the ER605 back to 2.3.0 (has to be done by SSH) does the remote site reconnect?

 

Other things to check

- Has your WAN IP changed so the remote site is attempting the port based controller access incorrectly

- Try deleting the port forward rules, reprovision ER605, and recreating the rules

 

Unfortunately i cant test the specific scenario as all my ER605's are the remote end and like you in difficult to access locations, and my one at home has an ever changing dynamic IP

  0  
  0  
#7
Options
Re:Gateway second site disconnected after firmware upgrade ER605 (from 2.3.0 to 2.3.1)
Yesterday

Hi @GRL, the WAN IP didn't change. Maybe I can indeed try to roll back the ER605 to previous firmware, which I might do somewhere this weekend. Wil keep you posted.

  0  
  0  
#8
Options

Information

Helpful: 0

Views: 266

Replies: 7

Tags

Firmware Update
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.