Hi,

2860ac router with approx. 20 SSL VPN accounts setup and working just fine.

Get a request to add an additional user, which I do. The moment the account is created the router reboots, comes up and starts sending emails containing this approx. twice a minute until rebooting again after a few minutes:-

---

firmware exception debug info

---

EPC=80a92998, Cause=80800028, Status=1100fc03, BadAddr=8420ac48, RetAddr=80a4c874 exception id=10(RI: Reserved Instruction) exception occured in IdleTask Timeout task_id=142, SP=0x8170b258(4450 bytes free, 616 used bytes) system tick =10929 CURRENT_VERSION : 3.8.9.3_R get from address : 80004000

Dump CPU registers:

---

$ 0: 00000000 fffffffe 45cf1100 45cf1100 $ 4: 84212230 00000001 00000001 84214ea0 $ 8: 822d0000 822d0000 fffffffc 80000000
$12: 822d2fec 1100fc01 80eb8168 ffffffff
$16: 84212230 84212328 841fd088 841fd020
$20: 841fd5ec 8420ae20 841fd420 00000000
$24: 00000000 80a08be0 00000001 00000000
$28: 815fd000 8170b258 00000000 80a4c874

List a possible caller functions:

---

func( 0)=80a4c874
func( 1)=80a018f4
func( 2)=80a02450
func( 3)=80a4ca84
func( 4)=80a01a78
func( 5)=80a7e03c
func( 6)=80a05754
func( 7)=809fd670
func( 8)=809fe390
func( 9)=809ff034

List backtrace functions:

---

func( 0)=80a92998
func( 1)=80a4c874
func( 2)=80a4ca84
func( 3)=80a05754
func( 4)=809fd670
func( 5)=809fe390
func( 6)=809ff034



I reverted to a config taken when the router was on 3.8.9.2 - everything becomes stable again. Testing now reveals that if I change ANY setting on ANY VPN account the reboots restart until I revert to the saved config again.

Anybody have any suggestions as to what could be happening here ?

Many thanks,
Ian

Can you add the 21st user while it is running V3.8.9.2?

FWIW, I just tried adding some more entries to my 2860n (also running 3.8.9.3). I got to 24, before I got bored - but no crash...

You could investigate the Telnet interface, and see if the 'VPN' commands produce different results to the GUI

Code:

Valhalla> vpn ? % Valid subcommands are: l2lset dinset subnet setup option mroute list remote 2ndsubnet trunk NetBios mss ike Multicast pass2nd pass2nat passAPM sameSubnet Valhalla>

Example from manual

Code:

> vpn setup 1 name1 dialin 1.2.3.4 vigor 1234 abc 192.168.1.0 255.255.255.0 % Profile Change Log ... % Profile Index : 1 % Profile Name : name1 % Username : vigor % Password : 1234 % Pre-share Key : abc % Call Direction : Dial-In % Type of Server : ISDN PPTP IPSec L2TP % Dial from : 1.2.3.4 % Remote NEtwork IP : 192.168.1.0 % Remote NEtwork Mask : 255.255.255.0

Update: I just tried that on my 2860 ... it says it worked, but it didn't

(Ultimately, given that the router crashes, this will be one for Draytek support to fix. They could fix the Telnet interface at the same time )

Thanks for the response.

Downgrading to 3.8.9.2 and trying was one of the things I'd thought of - and I'll give that a go when I'm next in the room with it! (it's remote and I don't want to risk the doing the downgrade that way).

Please do contact the support team with this issue so that it can be corrected in a new firmware. That's quite a clear cut problem so it should be possible for them to fix it quickly.

I wrote: FWIW, I just tried adding some more entries to my 2860n (also running 3.8.9.3). I got to 24, before I got bored - but no crash...

What I didn't notice at the time, is that Remote Dial-in User #21 got duplicated into LAN-to-LAN Index #21 :shock:

I can't reproduce it though ...