Issues with Residential WireGuard VPN Connection

Routers VPN, DNS, Leaks
1

Client Setup:

  • Device: Slate AX (GL-AXT1800)- Connected to M.E ISP router in repeater mode

  • Location: Middle East

Server Setup:

  • Device: GL-SFT1200 Opal

  • Location: United States

  • Internet Service: AT&T Fiber Optic, 1 Gig

Problem Description:

I have been using this Residential WireGuard VPN setup successfully for the past year. However, a few weeks ago, I started experiencing issues with connecting to my server in the US. We have confirmed that the server is not the problem.

Symptoms:

  • The client shows as connected initially it indicating upload traffic but no download traffic.

Image 12-31-23 at 5.40 PM
Image 12-31-23 at 5.40 PM2494×934 171 KB

  • Eventually, the connection fails shortly after about 15-20 seconds displaying a “client starting” message, followed by a complete loss of any connection.

  • Rebooting the ISP router multiple times is required before a stable connection is re-established. Can take many hours before it would work.

I’m unsure what could be causing these connection issues. Any guidance or suggestions would be greatly appreciated. I am ready to provide additional information as needed and will update this post with the most recent log file soon.

2

I would assume that this one is the problem.
Do you know if the country tries to execute censorship and/or blocks VPN?

3

I almost want to agree but I have another client router that connects to it as well

4

Please upload the log files so someone can look into it.

5

Sun Dec 31 18:38:04 2023 daemon.notice netifd: Interface ‘wgclient’ is setting up now

Sun Dec 31 18:38:04 2023 daemon.notice netifd: Network device ‘wgclient’ link is up

Sun Dec 31 18:38:04 2023 daemon.notice netifd: Interface ‘wgclient’ is now up

Sun Dec 31 18:38:04 2023 user.notice firewall: Reloading firewall due to ifup of wgclient (wgclient)

Sun Dec 31 18:38:08 2023 user.notice wgclient-up: env value:T_J_V_ifname=string J_V_address_external=1 USER=root ifname=wgclient ACTION=KEYPAIR-CREATED N_J_V_address_external=address-external SHLVL=3 J_V_keep=1 HOME=/ HOTPLUG_TYPE=wireguard T_J_V_interface=string J_V_ifname=wgclient T_J_V_link_up=boolean LOGNAME=root DEVICENAME= T_J_V_action=int TERM=linux SUBSYSTEM=wireguard PATH=/usr/sbin:/usr/bin:/sbin:/bin CONFIG_LIST_STATE= J_V_interface=wgclient K_J_V= action ifname link_up address_external keep interface J_V_link_up=1 J_V_action=0 T_J_V_address_external=boolean N_J_V_link_up=link-up T_J_V_keep=boolean PWD=/ JSON_CUR=J_V CONFIG_SECTIONS=global AzireVPN Mullvad FromApp group_5249 group_4568 group_7535 group_5072 peer_6640 CONFIG_cfg030f15_ports=

Sun Dec 31 18:39:09 2023 daemon.notice netifd: wgclient (11902): * Zone ‘guest’

Sun Dec 31 18:39:09 2023 daemon.notice netifd: wgclient (11902): * Zone ‘wgclient’

Sun Dec 31 18:39:09 2023 daemon.notice netifd: wgclient (11902): * Set tcp_ecn to off

Sun Dec 31 18:39:09 2023 daemon.notice netifd: wgclient (11902): * Set tcp_syncookies to on

Sun Dec 31 18:39:09 2023 daemon.notice netifd: wgclient (11902): * Set tcp_window_scaling to on

Sun Dec 31 18:39:09 2023 daemon.notice netifd: wgclient (11902): * Running script ‘/etc/firewall.nat6’

Sun Dec 31 18:39:09 2023 daemon.notice netifd: wgclient (11902): * Running script ‘/etc/firewall.swap_wan_in_conn_mark.sh’

Sun Dec 31 18:39:09 2023 daemon.notice netifd: wgclient (11902): * Running script ‘/var/etc/gls2s.include’

Sun Dec 31 18:39:09 2023 daemon.notice netifd: wgclient (11902): ! Skipping due to path error: No such file or directory

Sun Dec 31 18:39:09 2023 daemon.notice netifd: wgclient (11902): * Running script ‘/usr/bin/gl_block.sh’

Sun Dec 31 18:39:09 2023 daemon.notice netifd: wgclient (11902): * Running script ‘/etc/firewall.vpn_server_policy.sh’

Sun Dec 31 18:39:09 2023 daemon.notice netifd: wgclient (11902): uci: Entry not found

Sun Dec 31 18:39:09 2023 daemon.notice netifd: Network device ‘wgclient’ link is down

Sun Dec 31 18:39:10 2023 daemon.notice netifd: wgclient (11902): sh: 1: unknown operand

Sun Dec 31 18:39:10 2023 daemon.notice netifd: wgclient (11902): udhcpc: started, v1.33.2

Sun Dec 31 18:39:10 2023 daemon.notice netifd: wgclient (11902): udhcpc: sending discover

Sun Dec 31 18:39:13 2023 daemon.notice netifd: wgclient (11902): udhcpc: no lease, failing

Sun Dec 31 18:39:13 2023 daemon.notice netifd: Interface ‘wgclient’ is now down

Sun Dec 31 18:39:13 2023 daemon.notice netifd: Interface ‘wgclient’ is setting up now

Sun Dec 31 18:39:13 2023 user.notice firewall: Reloading firewall due to ifdown of wgclient ()

6

Can you please tell where in the Middle East you are located? I am also experiencing the same thing but with IPsec.

7

please remove wireguard client listen port if there’s one, also try to restart the SFT1200 wireguard server.