DNS (?) timeouts in RV082 ...

Unanswered Question
Jun 8th, 2010
User Badges:

Hi - I have an RV082 (running  2.0.0.19-tm) set up as the gateway to the Internet on my home LAN, and  connect to it through several switches / hubs around my house.   Randomly, and from various connections around the house (which are all  plugged in to different ports of the RV082), a Web request will fail to  load, giving a "Server not found" error in the browser.


When I look  at the log in the RV082, it says, "Connection Refused: Policy  Violation".


It  seems to be just blocking the DNS requests - everything else appears to  go through normally. For example, I get the message "Looking up  domainname.com" in the  bottom corner of the browser and the request  fails, displaying the Mozilla "Server not found" error page.  When I  click the "Try Again" button the page, it goes through just fine and  everything  works.


I don't have any services running behind the firewall, and  do not use the VPN settings. Here are my current firewall settings:


Firewall                     :
Enable
Disable
SPI                    (Stateful  Packet Inspection) :
Enable
Disable
DoS                     (Denial of Service) :
Enable
Disable
Block WAN Request :
Enable
Disable
Remote Management :
Enable
DisablePort:                                                  
HTTPS :
Enable
Disable
Multicast Pass Through :
Enable
Disable


Things I've tried:

  • Hard  reset - there doesn't seem to be a correlation between uptime and the  error. It happens sometimes right after a hard reset, and after a month  of uptime.
  • Turning off DoS setting - I found a random post  that suggested a Gigabit switch sending data to the  RV082 might trigger  the DoS firewall setting. But I've tried disabling  it and the error  still occurs.
  • Different DNS servers - I've switched from from  OpenDNS to Google's DNS to now using the DNS servers that Google's  Namebench suggested (which I think are owned by Verizon).
  • Different  ports - My house is wired, so I've tried switching between several  ports on the RV082 to see if the error goes away, but it never does.
  • Different  cables - Since my house is wired, I figured maybe the wires in the  walls were bad somehow. So I tried various cables plugged directly in to  the RV082's ports, and still get the error.  The cables were tested  with a cable tester.
  • Upgrading firmware - I'm using the  latest firmware, but was experiencing the error on previous firmware too  (not sure which version was "previous" for me.)
  • Different  computers / OSs - The issue happens on my Windows 7 computer and my  Windows XP computer.


Any ideas?


- Rob

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
jasbryan Wed, 06/09/2010 - 05:54
User Badges:
  • Silver, 250 points or more

Never see this issue before, but i noticed that you said you had a few hubs around the house.Is the computers that are having the issue plugged into the hub ? If you do still have hub's i would recommend replacing with a switch. Seeing as hub will create more collision domains when a switch will not. I need a network topology to futher see the issue any issue that you have. Did you make any changes under the firewall rule/access rules? This is where a policy would be rejected

"Connection Refused: Policy  Violation".



Do you have DHCP server or is the router doing DHCP ?

Do you have any static ip address on your network ?


It can be a number of things wrong but the diagram you displayed below shouldn't cause the error you are having!

Please give more information about your network and settings or you can give us a call at 1-866-606-1866


Thanks,

  Jason

Smartersys Mon, 02/14/2011 - 18:03
User Badges:

I've been experiencing this as well, did you by chance ever find a resolution?

jrpickering Mon, 02/21/2011 - 11:40
User Badges:

I have the exact same problem, seems the firewall is blocking some DNS responses.  Really need a fix cisco!

netpathinc Wed, 12/28/2011 - 10:01
User Badges:

Hi Rob and Russ


I started having the same problems after upgrading the firmware to v2.0.2.01 from a very old v1.x release.  I had to do the firmware upgrade to get uPnP working correctly. My RV082 is not one of the newer V3 models and I can't run the v4.x firmware.  I'm ready to give up on the RV082.


Following Russ's advice I disabled the DoS feature and also manually set the DNS servers on WAN1 to Google's DNS servers (8.8.8.8 and 8.8.4.4).  This seems to have helped but there are still timeouts and slowdowns.


Thanks,

Sheldon

troutsflyfishing Thu, 12/29/2011 - 21:27
User Badges:

Hi All,


We are also having the same problem - like Sheldon we are running 2.0.2.01 but that firmware upgrade was actually done in hope of fixing the problem.  What we've noticed is that the problem persists only when we have both WANs active - physically unplug one and the problem disappears.  In addition, we have several IP phones and a credit card terminal connected - those have static IPs with all traffic being routed though a particular WAN port - they never blink.


Additionally, we've manually set the WANs' DNS servers to OpenDNS (both WANs and the DHCP).  That fix is only temporary though - after a while the office begins intermittently losing DNS again and a router reboot is required.


We bought the router new just a month ago, but it's the old v2.

jasbryan Fri, 12/30/2011 - 06:50
User Badges:
  • Silver, 250 points or more

Hi All,


I have an RV082 that has been up and running for a while; haven't noticed any issue regarding DNS? I check and verify that i was running 2.0.0.19 so i upgraded to 2.0.2.1. The RV082 is our gateway of about 100 devices in which only 4 to 5 device are Mac users. I haven't had anyone complain since i upgraded. Does this seem to be isolated just to MAC users?


Jasbryan

jasbryan Mon, 02/20/2012 - 12:06
User Badges:
  • Silver, 250 points or more

Andreas,


When you say RV082 does DNS using OpenDns please explain. Normally running ad server which relies heavily on DNS i take it you have a local DNS server? If you're using a local DNS server then i would have my forwarders send my dns queries to Opendns server not the RV082. The RV082 isn't a dns server so the only thing it will do is forwards those request to it's WAN DNS servers(which just another process thats isn't needed). When using ad/dns the rv082 should never had to forward those queries.


Jasbryan

AndreasGeissbuehler Mon, 02/20/2012 - 13:06
User Badges:

Jasbryan,


This is home office. My real and virtual Windows and Linuses all use DHCP or gateway 192.168.x.1, the RV082, which is also the IP of the default/dynamic DNS server. I use the RV082 as a local DNS server ("DNS Local Database") and server of pseudo-static IP addresses! Yes, RV082 passes the requests to OpenDNS.com, the world's greatest DNS server. Granted, I could hardcode the OpenDNS IP addresses on all NICs. Why bother? I have no DNS or RV082 bottlenecks. Besides, I love the pseudo-static IP address feature.


Sorry, your "ad server" confusion / misunderstanding stems from my ennumeration "loading via ad servers", meaning jewels like this URL:

http://ad.ca.doubleclick.net/click%3Bh%...%7Esscs%3D%3fhttp://www.website.com/THEpageIwaitFor.htm


Hope that clarifies it and invites others to comment how thay made this problem go away.


Andreas

jasbryan Mon, 02/20/2012 - 15:13
User Badges:
  • Silver, 250 points or more

No worries,


yes open dns is great, i use them myself. Now you can add the static dns settings (opendns servers) under DHCP tab. You should see the ability to add up to 3 static dns servers. Since the RV04x isn't a dns server i would static add dns options here.


Jasbryan

AndreasGeissbuehler Mon, 02/20/2012 - 10:04
User Badges:

I recently upgraded mine to 2.0.2.01-tm from 2.0.0.19-tm. I had the exact same problem before and still have it now. My RV082 does DNS using OpenDNS. Their stats for my IP look pretty resonable. I am not presently using WAN2 and have just now disabled it (in "Port Management" settings). I attribute part of the problem to ads, loading via ad servers, 3rd party cookie blocking and my crude way of ad blocking. As for the "other part" I hope to find more answers here.

martin.ecker Tue, 05/07/2013 - 02:39
User Badges:

Has there been a solution for this problem meanwhile?

I also run a RV082 with 2.0.2.01 and the same Problem.


Martin

AndreasGeissbuehler Tue, 05/07/2013 - 06:45
User Badges:

Prior to 2.0.2.01 it worked. Now it's BROKEN !!  And this is how:


The RV082 local DNS "database" / list, if active, was ALWAYS searched first before the lookup request was sent to the DNS server for WAN1 / WAN2, who's IP addresses I supplied on  the RV082 Setup panel.


The BUG is readily circumventable. To make it work as before you now must specify *maually* a static *DDNS* IPaddress for all (dynamic ip) guest adapters, e.g. 192.168.2.1, the ipaddr of the RV082. If you don't then the RV082 will supply the ipaddress of the external DNS service provider (WAN1/WAN2 Setup) AND thus the RV082 local DNS is bypassed, ignored.


I really wish that CISCO would fix this !!

Actions

This Discussion