PP2T VPN client weirdness
-
I agree with yaw - exactly the same behaviour. Furthermore, if I replace pfSense with my DLink WiFi router, the problem goes away and my PPTP connections stay alive without needing any keep alive traffic.
-
Yep.. something odd going on here. I never had this problem with version 1.2.3
-
Also not with pfSense 2.0 BETA3 from June this year I think.
-
Yes I am seeing this exact same issue with the beta snapshots as of late. I tried a few things and had to revert back to the 1.2.3 release until it gets sorted out. This will be a problem for folks who PfSense at home offices and corporations.
So any ideas would be greately apprecaitedl.
Darkk
-
Found this: http://forum.pfsense.org/index.php/topic,29427.0.html, and tried adding the two NAT rules for TCP/1732 and GRE. What do you know - now it works. But I am confused - I thought this was fixed already? Secondly, obviously the NAT rules are only a temporary solution as I have multiple clients needing PPTP access behind the firewall.
(I say it worked because I managed 17 minutes and counting of idle PPTP traffic without being disconnected).
-
Yeah.. I have multiple clients here also.. not going to work.
I wonder if the fix always had this problem. I bet nobody let their connection sit idle long enough to test.
-
Mine will timeout like that within 45 seconds….
Grabbing a coffee?
-
haha.. good point. Mine is rather quick also. Who knows then.
-
Wouldn't it be easier to have it automatically create a Dead Peer Detection routine just like IPSec to keep it alive?
Darkk
-
I think the problem is that the state table gets messed up somehow and the reply packets do not make it back to the NAT-ed host.
-
Any news on this?
-
Still seems broken in this build:
2.0-BETA4 (i386)
built on Sat Dec 18 09:51:58 EST 2010 -
Just checked with
2.0-BETA5 (i386)
built on Mon Jan 3 13:22:20 EST 2011Still the same. Can connect to any PPTP VPN just fine, but if I do not continuously send traffic the link goes half dead - I can send packets but never receive anything.
Please this is very important, any insights?