Problems getting Roon ARC Port Forwarding working on new GL.iNet Flint (GL-AX1800)

Roon Core Machine

Mac mini (M1, 2020), 16GB Memory
Roon Core version: 2.0 (1211)

Networking Gear & Setup Details

GL.iNet Flint (GL-AX1800)

Description of Issue -

What is the exact port forwarding error message you see in the Roon Settings → ARC tab?

{
"connectivity": {"status":"NetworkError","status_code":502,"error":"error: Error: write EPROTO 69222402615232:error:1409442E:SSL routines:ssl3_read_bytes:tlsv1 alert protocol version:../deps/openssl/openssl/ssl/record/rec_layer_s3.c:1546:SSL alert number 70\n, response code: undefined, body: undefined"},
"external_ip": {"actual_external_ip":"148.aaa.bbb.ccc","actual_external_ipv6":"null","router_external_ip":"148.aaa.bbb.ccc"},
"natpmp_autoconfig": {"status":"NotFound"},
"upnp_autoconfig": {"server_ip":"192.168.8.1","found_upnp":true}
}

So, Roon ARC was working just fine on my previous router with very similar port forwarding settings running on an OpenWRT install on my old TPLink C7. Switched to this new Flint Router, running essentially the same software (Open WRT, LuCI and a custom UI provided by GL Inet, and it no longer works. I have attached images of the configuration in the router. The port forward is presented in the custom UI and LuCI.

I should note on the old router I did not setup uPnP, just a manual port forwarding rule. On this one I’ve just turned on uPnP, then added the rule, and neither condition seems to alter the error message or allow ARC to connect.

Curious how I can further debug this, or if someone has this working on a similar router model. I haven’t seen anything up in these forums yet.

Screen Shot 2023-02-24 at 12.20.27 PM2174×520 52.9 KB

Screen Shot 2023-02-24 at 12.19.57 PM1992×1372 207 KB

Screen Shot 2023-02-24 at 12.19.00 PM2070×858 119 KB

Screen Shot 2023-02-24 at 12.18.39 PM1304×1294 62.4 KB

UPnP is there to create a rule. We have seen many cases on the forum where some router software does not deal well with it if UPnP is enabled and a manual rule is created as well. (Arguably it should, but in practice it often does not). I would suggest you try one or the other.

I have never seen this EPROTO OpenSSL error that you have though, so I don’t know what this is. I’d still try either UPnP or a manual rule, maybe it goes away.

I have tried both - turning on UPnP with no port forwarding and port forwarding with no UPnP. Hopefully Roon support will be able to triage or better understand the open ssl error - perhaps I need some certs installed on the router? Maybe this is something specific to the model?

Doing some light digging this error comes up when a service is running TLS 1.0 and something (Roon?) requires TLS 1.2…

I searched and among the endless posts about port forwarding questions there was not a single one with this OpenSSL error (unless people posted screenshots instead of copying the text, making it unsearchable). I have no idea why this happens Best to wait for support I guess unless some other volunteer has ideas. But be prepared to have patience

So I fixed it! I went into the plugin installation page of OpenWrt and installed “libgnutls-openssl”, kept UPnP on without any port forwarding rules since Roon was able to detect it before, and rebooted the router. Now RoonARC is able to connect and the mobile app has refreshed.

Hopefully this saves someone in the future who finds this error. Some routers apparently don’t install SSL or TLS by default? or have an old version that still only supports TLS 1.0? Either way, fortunately it was easily fixed, once I was able to try and pinpoint the error.

Very good I suppose Roon must try to be compatible with lots of crappy routers doing all kinds of outdated and crappy things and it would not surprise me at all if some have only TLS 1.0. To add for future reference, if OpenWRT packages are like usual (and I suppose so), libgnutls-openssl installs TLS 1.0, 1.1, 1.2, 1.3

This topic was automatically closed 36 hours after the last reply. New replies are no longer allowed.