New Update + Final Solution: So with KeepSolid, it's $99 for a lifetime, then I spend $12.50 a month for a private IP, everything works now, gaming/P2P/VOIP/etc. This is the recommended route I suggest you go with for any VPN provider you land upon, as having your own IP will allow you to access everything without sites blocking you if they know it's a known IP.
OpenVPN will kill your connection speed, this is not a solution. Installing VPN Apps on everything is also not a solution. The below is a decent solution between the two.
To solve this issue, I turned my Archer C7 (TP-Link) v2 into my main router. I purchased a VPN from KeepSolid and used this guide to run everything through Wireguard now. Speed is about 75% of my main speed (which is fine). This could be improved with a stronger hardware router. So pretty impressed with Wireguard.
My config now goes like this:
WG-3526 + MC7455 (XXX.XXX.1.1) = Internet -> Line into DDWRT router(XXX.XXX.0.1(Archer C7) Wan Port (internet port). Rest of my lan now runs through it.
This works for now, since I've had connection drops continually for the past 3+ weeks. Since I use this for my job, I cannot have these drops. Yes my speed is slower I'm fine with it. If it's stable and doesn't die every 1-4 hours.
This setup didn't take much to do. I'll continue to monitor the wan connection to see if it drops, maybe in a few months I'll get lucky and not have to go through wireguard, but at this point, I'm not worried about it.
As a lot of you know, or having issues and don't know, AT&T has started putting Transparent proxies in front of our connections. In turn this is causing modems to stay connected but lose DNS. (You can Ping googles servers via IP 126.96.36.199, or anything else IP wise, but you cannot hit websites via DNS). So I wanted to start a thread and compile all the info/work arounds that have been presented(tested or not tested), and trying and just have a single thread for helping everyone. (This is mostly for my sanity to keep everything together). This is mainly for ROOTer firmware, but the solutions (if they work) should be able to be used on other software/hardware combos.
https://forums.att.com/conversations/ot ... 341?page=6
Solutions so far:
If you're on a MOFI firmware - update it and set your connection monitor to ping something like google.com or another website. The MOFI software will reboot the modem. You're issue should be resolved. (viewtopic.php?p=13321#p13321)
[*]IPV6 only - I have not been able to get this to work at this time. A lot of info I have found is for sprint and not AT&T. (It's suggested that IPV6 isn't forced to go through AT&Ts transparent proxy, which resolves this issue). (viewtopic.php?f=15&t=1985&p=13577&hilit=ipv6#p13577)(thread has no current resolution)(viewtopic.php?f=21&t=6) This thread is for T-Mobile :/
Found This for IPV6, haven't tested it yet though, removed the MBIM activation since Golden Orb Now works with IPV6 and QMI mode.
Code: Select all
at!entercnd="A710" at+cgdcont=1,"ipv4v6","broadband" At!custom="IPV6ENABLE",1 at!selrat=06 at!reset
[*]VPN Service - This I've tried, and it does work, but using OPENVPN inside of the ROOTer software kills bandwidth, using the application of your vendor seems to have better results, but it's going to be needed per device, and is not what I would consider a fix. Figuring out why openvpn causes a massive loss in speed is something to be looked at. I'm currently working with PIA, but since I have updated to the latest golden orb I can no longer get the OPENvpn settings working, no matter what I do.
[*]L2TP - (viewtopic.php?p=10964#p10964) - Still trying to figure out how to do a L2TP on the ROOTer Firmware.
[*]MTU Settings - (viewtopic.php?f=8&t=1403&hilit=tracert&start=110#p13311) Testing this, this morning.
(Network -> Interfaces -> WWAN0(WAN1) -> Edit -> Advanced -> Override MTU)
Edit: This did not resolve the issue. Today having multiple disconnects already in a 5 hour working time.
[*]Modem Reboot Script - This hasn't been updated in a while (viewtopic.php?f=21&t=121) Seems to only be avaialbe for WiFix. WiFix works for the WG3526 and others, places LTEFix Ping Test as enabled, but 10mins per ping to check is WAY to long. This needs to be done every 5-10 seconds, not 10mins. As once the ports 80/443 are closed, no one wants to wait up to 10mins for this to figure out it's down.