Hey I have two drayteks setup with dial out (2830n) and dial in (2860) for VPN - Today it just stopped working. I have other vpn on the devices that are working fine. Nothing changed on the configs and they are both running the latest firmwares.

In the dialout log i can see this - anyone have any ideas what this is - ive tried logging a ticket with support as well.

2000-01-01 00:27:56 Destroy pptp connection ifno: 11, socket: 18
2000-01-01 00:27:55 PPP Drop VPN : L2L Dial-out, Profile index = 5, Name = test-vpn-b, ifno = 11
2000-01-01 00:27:55 PPP Drop VPN : L2L Dial-out, Profile index = 5, Name = test-vpn-b, ifno = 11
2000-01-01 00:26:56 Destroy pptp connection ifno: 12, socket: 18
2000-01-01 00:26:55 PPP Drop VPN : L2L Dial-out, Profile index = 5, Name = test-vpn-b, ifno = 12
2000-01-01 00:26:55 PPP Drop VPN : L2L Dial-out, Profile index = 5, Name = test-vpn-b, ifno = 12

Any assistance greatly appreciated

I notice the time is wrong. Given that most people sync. the Router time with something external, are you sure you haven't got a wider problem?

Do you have access to the log from the 2860 end?

Maybe your ISP has just decided to block VPN usage (apparently some do) ... or perhaps they're trying to save you from yourself, by just blocking PPTP :wink:

Thanks for the reply. Yeah i noticed the time thing as well. I went in checked and all the time settings are correct. Once i check the logs again the time updates (seems weird)

Yeah I have access to both side of the vpn and the receiving side is showing this in the logs currently
[PPTP][@ip.ip.ip.ip] pppShutdown

The receiving side also has a vpn out to another site which is working fine and the sending side also has a vpn to another site also.
I had suspected something funky with the broadband provider alright but with the other vpn's working om not sure.

I set it to just pptp and the latest logs is below (ip's redacted)
Dial OUT - Log
2021-06-05 19:55:56 Destroy pptp connection ifno: 12, socket: 18
2021-06-05 19:55:56 PPP Drop VPN : L2L Dial-out, Profile index = 1, Name = SITELOCATION, ifno = 12
2021-06-05 19:55:56 PPP Drop VPN : L2L Dial-out, Profile index = 1, Name = SITELOCATION, ifno = 12
2021-06-05 19:55:31 PPTP_conn socket invalid and reset conn_state: 4
2021-06-05 19:54:55 Destroy pptp connection ifno: 11, socket: 18
2021-06-05 19:54:55 PPP Drop VPN : L2L Dial-out, Profile index = 1, Name = SITELOCATION, ifno = 11
2021-06-05 19:54:55 PPP Drop VPN : L2L Dial-out, Profile index = 1, Name = SITELOCATION, ifno = 11
2021-06-05 19:54:51 statistic: Session Usage: 37 (5 min average)
2021-06-05 19:54:51 statistic: WAN2: Tx 16 Kbps, Rx 22 Kbps (5 min average)
2021-06-05 19:54:47 Destroy pptp connection ifno: 11, socket: 18
2021-06-05 19:54:47 PPP Drop VPN : L2L Dial-out, Profile index = 1, Name = SITELOCATION, ifno = 11
2021-06-05 19:54:47 PPP Drop VPN : L2L Dial-out, Profile index = 1, Name = SITELOCATION, ifno = 11
2021-06-05 19:54:47 Linking status:3 time out...restart VPN[11] of L2L[1].

DIAL IN - Log
2021-06-05 19:56:20 PPTP accept client from IP.IP.IP.IP:25128 ...
2021-06-05 19:56:18 [PPTP][@IP.IP.IP.IP] pppShutdown
2021-06-05 19:56:18 PPP Closed : LCP Time-out ()
2021-06-05 19:56:18 [PPTP][@IP.IP.IP.IP] pppShutdown
2021-06-05 19:56:18 Destroy pptp connection ifno: 12, socket: -1
2021-06-05 19:56:18 [PPTP][@IP.IP.IP.IP] pppShutdown
2021-06-05 19:56:18 [PPTP][Radius/LDAP][0:][@IP.IP.IP.IP] I/O read error, fast close

Thanks
Ryan

rbrads-ie wrote:
The receiving side also has a vpn out to another site which is working fine and the sending side also has a vpn to another site also.
I had suspected something funky with the broadband provider alright but with the other vpn's working om not sure.

um. Point taken.

2021-06-05 19:56:18 [PPTP][Radius/LDAP][0:][@IP.IP.IP.IP] I/O read error, fast close

I wondered if that 'error' was significant, but I don't think it is. The only Google hit on "I/O read error, fast close" took me to here: https://community.plus.net/t5/My-Router/TD-W9980-setup-part-2/td-p/1719803 .

This chap is having a totally different problem - but it struck me how terse your Syslog is, in comparison. There's apparently no real attempt at authenticating the VPN being made.

However, like the person in the above thread, I've always found the 2860's SYSLOG access via the GUI to be very flakey, so it could just be that. Do you have access to a 'better' version? (If not on a USB stick or separate SYSLOG server, then possibly via the telnet "Log" command) ?

Thanks for the reply.
I actually managed to make some progress last night and. I changed the VPN Settings away from PPTP to ipsec tunnel and i managed to get the VPN connected between the two sites. The problem I have now is the traffic isnt passing over it.

Currently VPN says it is connected with - "IPsec Tunnel DES-No Auth"

I'm wondering if you use ipsec do you need to configure any other kind of routing ? - ive been looking through draytek site and different setups but i cant see anything glaringly obvious.
Below are the logs currently

Dialin Site Log
IKE <==, Next Payload=ISAKMP_NEXT_HASH, Exchange Type = 0x5, Message ID = 0xc1c5c8ca
2021-06-06 14:32:24 IKE ==>, Next Payload=ISAKMP_NEXT_HASH, Exchange Type = 0x5, Message ID = 0xa62d9e5a
2021-06-06 14:32:24 IKE <==, Next Payload=ISAKMP_NEXT_HASH, Exchange Type = 0x5, Message ID = 0xb8bfc3c5
2021-06-06 14:32:24 IKE ==>, Next Payload=ISAKMP_NEXT_HASH, Exchange Type = 0x5, Message ID = 0x81aac4ba
2021-06-06 14:32:09 IKE <==, Next Payload=ISAKMP_NEXT_HASH, Exchange Type = 0x5, Message ID = 0x68156c18
2021-06-06 14:32:09 IKE ==>, Next Payload=ISAKMP_NEXT_HASH, Exchange Type = 0x5, Message ID = 0xb3737d62
2021-06-06 14:31:57 L2TP <== Control(0xC802)-L-S Ver:2 Len:12, Tunnel ID:10, Session ID:0, Ns:1097, Nr:1096
2021-06-06 14:31:57 L2TP ==> Control(0xC802)-L-S Ver:2 Len:20, Tunnel ID:12, Session ID:0, Ns:1095, Nr:1097
2021-06-06 14:31:56 L2TP ==> Control(0xC802)-L-S Ver:2 Len:20, Tunnel ID:12, Session ID:0, Ns:1095, Nr:1097
2021-06-06 14:31:56 L2TP ==> Control(0xC802)-L-S Ver:2 Len:12, Tunnel ID:12, Session ID:0, Ns:1095, Nr:1097
2021-06-06 14:31:56 L2TP <== Control(0xC802)-L-S Ver:2 Len:20, Tunnel ID:10, Session ID:0, Ns:1096, Nr:1095
2021-06-06 14:31:55 L2TP <== Control(0xC802)-L-S Ver:2 Len:20, Tunnel ID:10, Session ID:0, Ns:1096, Nr:1095

DIAN OUT - LOG
2021-06-06 14:33:37 [Web]WebUI login success from IP 192.168.17.44 [admin]
2021-06-06 14:33:37 cgiWebLogin ssl_group_idx -1
2021-06-06 14:32:47 statistic: Session Usage: 22 (5 min average)
2021-06-06 14:32:47 statistic: WAN2: Tx 3 Kbps, Rx 16 Kbps (5 min average)
2021-06-06 14:27:47 statistic: Session Usage: 22 (5 min average)
2021-06-06 14:27:47 statistic: WAN2: Tx 2 Kbps, Rx 16 Kbps (5 min average)
2021-06-06 14:22:47 statistic: Session Usage: 22 (5 min average)
2021-06-06 14:22:47 statistic: WAN2: Tx 2 Kbps, Rx 15 Kbps (5 min average)
2021-06-06 14:17:47 statistic: Session Usage: 22 (5 min average)
2021-06-06 14:17:47 statistic: Session Usage: 25 (30 min average)

2021-06-06 14:12:47 statistic: Session Usage: 24 (5 min average)
2021-06-06 14:12:47 statistic: WAN2: Tx 2 Kbps, Rx 17 Kbps (5 min average)

2021-06-06 13:56:53 sent QI2, IPsec SA established with ip.ip.ip.ip. In/Out Index: 0/-1
2021-06-06 13:56:53 IPsec SA #120 will be replaced after 2996 seconds
2021-06-06 13:56:53 Client L2L remote network setting is ip.ip.ip.ip/24

Thanks
Ryan

rbrads-ie wrote:
I'm wondering if you use ipsec do you need to configure any other kind of routing ?

No, it should be the same. (I have a long-time (6+ years) stable L2TP/IPsec VPN, from 2860 -> 2830).