Issue with Android tunneler connectivity

Hello, I've been using External JWT auth and successfully had it working, and now my Ziti Tunneler app on Android still shows it's connected and authenticated and "on", however the intercepts are not actually functioning now.

I receive "ERR_CONNECTION_REFUSED" on Chrome. I can send the logs to you if it will help (just let me know where to send them), there's a lot there in the zip file for it. Attached screenshots showing the active identity/tunnel.

To add on to this... I tried disabling the identity and tunnel and re-enable and the identity shows as "offline". If I go into details it says "Authentication: Initial".

connection maybe refused if the login process takes longer than 30 seconds

you can DM the logs to me here. Logs should have enough information on why intercepts are not working

so it appears that your router is in some funky state. here is what logs show:

1-29 11:39:50.782 17682 17701 D ziti-sdk:channel.c:780 reconnect_cb(): ch[2] connecting to tls://router1.xxxx:8442
01-29 11:39:50.851 17682 17701 D ziti-sdk:channel.c:949 on_tls_connect(): ch[2] connected alpn[ziti-edge]
01-29 11:39:50.923 17682 17701 I ziti-sdk:channel.c:712 hello_reply_cb(): ch[2] connected. EdgeRouter version: v1.2.2|9a83ca87bc5f|2024-11-23T00:09:04Z|linux|amd64
01-29 11:39:50.923 17682 17701 I tunnel-cbs:ziti_tunnel_ctrl.c:1061 on_ziti_event(): ztx[Josh-Authentik] router HOME2ZITI-edge-router connected
01-29 11:39:50.923 17682 17701 I ziti-sdk:channel.c:907 on_channel_data(): ch[2] channel disconnected [-4095/end of file]
01-29 11:39:50.923 17682 17701 I tunnel-cbs:ziti_tunnel_ctrl.c:1064 on_ziti_event(): ztx[Josh-Authentik] router HOME2ZITI-edge-router disconnected
01-29 11:39:50.923 17682 17701 D ziti-sdk:channel.c:99 close_connection(): ch[2] closing TLS[0xb40000793f28a930]

it seems to me that the router session sync is not working correctly.
can you check the router logs for any clues?

you can also try to restart the router and see if it resolves the issue

Hmmm ok I believe the router logs are in UTC.... sending the rough time frame matching this in UTC now, I'm not sure what to look for in. Thank you for looking into this!

Restarted the router - no change, same with restarting the controller.

It started working by itself again last night.... I've had this a few times. Let me know if there's any other logs or info I can send to help troubleshoot/find the bug the next time this happens.

1 Like

the router logs indicated some issue between controller and router. management connection was being reset frequently and router was not getting updates, which led to endpoints not being able to connect to the router

@ekoby Hmmm that's odd given they are both on the same machine! What could cause this?