Hopefully this will be of some use to people.
Just received latest update of Unifi USG-3P (4.4.57) and it still has the ppp promiscuous reconnect issue.
See my earlier post for how I tracked down the problem:
- Connecting OK via PPPoE using a VLAN.
- Connection dropped by provider - as part of periodic maintenance
- USG succesfully reconnects but then receives spurious packet meant for another device on the provider's network
- USG kernel ppp acks that and then the connection goes in to an unknown state.
- On reconnect - the VLAN Device that the PPP connects over is Promiscuous and there's a bug in the PPP Kernel driver that does not correctly filter packets.
- Drop the following file into
/etc/ppp/ip-pre-up.d/0001-turn-promisc-offand make it executable:
#!/bin/sh if [ "$DEVICE" = "" ] then echo "========= 0001-turn-promisc-off: Expecting DEVICE" exit 0 fi if ip link show "$DEVICE" | fgrep -q PROMISC then echo "========= 0001-turn-promisc-off: Clearing PROMISC on $DEVICE" ip link set "$DEVICE" promisc off fi exit 0
Of course rather than dropping the above file to work around the issue - the real fix is two-fold.
- Unifi needs to investigate why Vyatta code is bringing up the interface in promiscuous mode - maybe there is a later version of Vyatta that has this resolved.
- Unifi should pull the later kernel release that has the PPP Kernel filtering bug fixed (See https://bugzilla.kernel.org/show_bug.cgi?id=207597 )