Internet dropping connection
-
Hi all,
I am hoping you can help me as I'm new to Pfsense. Over the last couple of days I implemented the Pfsense appliance to a vSphere 5.5 environment. The internet appears to work for about 30 minutes or so then drops. The appliance internal connection appears to be up as I have a continuous ping to it, however the connection to the internet drops out at roughly the same time before reestablishing connection again about 10 - 20 minutes later.
The gateway does appear to be up as I have other machines connected to it with no problems, it just happens to be the Pfsense that drops the connection. Below are the system logs:
Gateway Log
Aug 16 11:50:28 apinger: ALARM: WANGW(212.XX.158.XXX) *** down *** Aug 16 12:07:26 apinger: alarm canceled: WANGW(212.XX.158.XXX) *** down ***
General Status Log
General
Aug 16 11:51:19 kernel: arp: 00:90:7f:8d:c8:be is using my IP address 212.XX.158.XXX on em0!
Aug 16 11:07:48 check_reload_status: updating dyndns WANGW
Aug 16 11:07:48 check_reload_status: Restarting ipsec tunnels
Aug 16 11:07:48 check_reload_status: Restarting OpenVPN tunnels/interfaces
Aug 16 11:07:48 check_reload_status: Reloading filter
Aug 16 12:50:19 kernel: arp: 00:90:7f:8d:c8:be is using my IP address 212.XX.158.XXX on em0!
Aug 16 11:50:38 check_reload_status: updating dyndns WANGW
Aug 16 11:50:38 check_reload_status: Restarting ipsec tunnels
Aug 16 11:50:38 check_reload_status: Restarting OpenVPN tunnels/interfaces
Aug 16 11:50:38 check_reload_status: Reloading filter
Aug 16 12:50:39 kernel: arp: 00:90:7f:8d:c8:be is using my IP address 212.XX.158.XXX on em0!
Aug 16 12:50:59 kernel: arp: 00:90:7f:8d:c8:be is using my IP address 212.XX.158.XXX on em0!
Aug 16 12:51:19 kernel: arp: 00:90:7f:8d:c8:be is using my IP address 212.XX.158.XXX on em0!
Aug 16 12:07:36 check_reload_status: updating dyndns WANGW
Aug 16 12:07:36 check_reload_status: Restarting ipsec tunnels
Aug 16 12:07:36 check_reload_status: Restarting OpenVPN tunnels/interfaces
Aug 16 12:07:36 check_reload_status: Reloading filterI also notice the time changes each time it reboots or gains connection to the web again, not sure if this is related or NTP just syncing the time again.
Any help would be greatly appreciated.
Many thanks
Richard -
What version of pfsense?
-
This is running version 2.2.4
Thanks
-
I also believe the pattern appears to be every 1 hour XX:50 approx
-
Aug 16 12:50:39 kernel: arp: 00:90:7f:8d:c8:be is using my IP address 212.XX.158.XXX on em0!
Aug 16 12:50:59 kernel: arp: 00:90:7f:8d:c8:be is using my IP address 212.XX.158.XXX on em0!
Aug 16 12:51:19 kernel: arp: 00:90:7f:8d:c8:be is using my IP address 212.XX.158.XXX on em0!Tell us more about your setup, my crystal ball is on holidays.
-
Hi Chris, good point,
The setup is running in the datacentre using one of the assigned IP addresses and gateway. The feed goes in to an HP switch which is shared with a Watchguard firewall using another assigned IP address and same gateway. This connection remains stable. The internet feed is ok because the Watchguard remains up. This is using another IP from the pool allowance.
Another cable from the HP switch goes in to a ESX 5.5 host on a dedicated vswitch and vmnic for WAN.
A second connection goes to a another vswitch and vmnic for LAN.
All the VMs on this ESX host use the LAN (192.168.1.1) as the local gateway and this also remains stable.
The gateway for the WAN seems to drop at 50 mins past the hour and disrupts all the VMs for internet access.
I'm using the latest Pfsense with basic setup, nothing has really changed apart from rules to allow policies in and out of the WAN to LAN.Hope this makes sense
Richard
-
Richard,
the words of a technician are drawings.
Do not describe your setup verbally as it complicates understanding. Make a sketch.User Derelict has this in his tagline: Use this diagram to describe your issue.
-
Might I suggest a sticky at the top of this forum for the majority of people who never read this link
https://forum.pfsense.org/index.php?topic=70.0Example sticky for this forum.
–------------------------------------------------------------------------------------
Title:Need help? 20 seconds reading this post to save time.Content:
Before posting:
1. Use the FAQ at this link. https://www.pfsense.org/get-support/support-faq.html
2. Use the WIKI at this link for step by step guides & other info. https://doc.pfsense.org/index.php/Main_Page
3. Always search the forum using link top right of this webpage, to limit search to a subform, use the search from within the subforum. keywords work best.
4. Investigate the pfsense bugtracker here https://redmine.pfsense.org/projects/pfsense/issues?set_filter=1
and the pfsense packages bugtracker here https://redmine.pfsense.org/projects/pfsense-packages/issues?set_filter=1If you dont know the terminology, investigate links like http://www.linktionary.com/f/firewall_term.html & http://www.techrepublic.com/article/jargon-explained-learn-the-terms-used-with-firewall-technologies/
Before posting.
If you still havent found the knowledge you are looking for, when describing your problem, question or observation, include the following information.
1. What version of pfsense and the hardware including model of network cards, you are currently or planning to use.
2. Use Gliffy (its free and webbased) to draw your network layout. https://www.gliffy.com/uses/network-diagram-software/
3. Ensure your post title is descriptive to attract the relevant knowledgable users. Lan problem, wan problem is not descriptive.
4. Describe your problem, question or observation in as much detail as possible to avoid unnecessary questions being posted asking for more information, dragging out the total time it takes for you to resolve your post.
Whilst life is hard enough, doing simple things like including the links to places for people to investigate can help which might be noted by seeing an increase in web traffic elsewhere on the site, and a slightly more structured format and increase of relevent information when posting in the forums, hence the suggestion and format for above.