amqpi_EstablishConnection: Server exception - connection closed

Jan_G · July 12, 2022, 12:37pm

Hi,

I have 2 eWon Cosy at the same company.

One has FW 14.2s0 (device “LasWucht 3”) and one FW 14.6s0 (device “LasWucht 2”).
Both of them produce the same 5 lines in in the rtevents log:

1657533090 590060312 19 871059 amqpi_EstablishConnection: Server exception - connection closed
1657533090 590060312 19 871060 amqpi_EstablishConnection: No response
1657533090 590060312 19 871061 Closing connection
1657533090 590060313 19 871062 Establishing the connection failed
1657533094 590063584 19 871063 Establishing connection

The one with FW 14.6 does it every hour, the one with FW 14.2 does it multiple times per minute.

Those reconnects seem to use up a lot VPN traffic. In fact it is so much that towards the end of each month the 3GB quota of the free account is completely used up.

I have attached backups incl support files

MOVED TO STAFF NOTE (177.5 KB)
MOVED TO STAFF NOTE (346 KB)

Any idea where this comes from? And what I could do to stop it?

Thank you!

Jan

kyle_HMS · July 20, 2022, 2:12pm

Hi @Jan_G,

I apologize for the delay.

It appears that your devices are having issues connecting to our access server. Can you make sure that your firewall allows access to:

92.52.111.213 
and
device.api.talk2m.com

What happens when you run the Talk2m Connection Checker?

For this case, I would recommend that you gather as much info as possible (Connection Checker logs, backups, firewall info) and open a case in our Ticket System at https://support.hms-networks.com so that you will get the most prompt response.

Best Regards,

Kyle

Jan_G · July 21, 2022, 12:47pm

Hi Kyle,

thank you for your message!

Since I upgraded both devices to FW4.6 they are trying to connect to your server once per hour instead of multiple times per minute. This means that at least the excessive data traffic usage is gone down significantly.
What is the connection to that access server for? I have no problems connecting to the devices or to devices on the LAN side.
I have to aks our customer IT if the mentioned IP adress and host are open in their firewall.
Unfortunately the Talsk2M connection checker is not reachable at the moment, neither is the support website.

Best regards
Jan

kyle_HMS · July 25, 2022, 6:35pm

The access server is the server that tells the Ewon which VPN server to use. If the Ewon can’t reach it, it will try the last one it connected to. Since IP addresses and domain names can change, and servers can go down, it’s best practice to check the access server for the current best server, however, there is a setting to set a static server. The downside of using a static server is that you can only enter 2 server addresses and if they can’t be reached, the Ewon won’t be able to connect to the VPN.

This is the setting in comcfg.txt:

To set a static server, you would fill in VPNSrv1 and VPNSrv2.

This would be a workaround to reduce traffic, but I would highly recommend getting the access server added to the firewall’s allowed list instead!