OpenVPN and IPSEC strange and unstable

Started by lshantz, June 11, 2026, 12:25:36 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
June 11, 2026, 12:25:36 AM
I used OpenVPN for several years until the major changes made and have not got it going again. We finally made an effort to get it running and we thought all was well. We put a remote firewall into production after testing on the work bench and all was good. It stopped working after about 24 hours. We don't know why. We went out and turned off the static TLS and it still does not work. Out of frustration we went to IPSEC. Got it working. Less than an hour later, it too stopped working. We have spent hours trying to discover what is wrong. To the point, we have started looking at alternative firewalls.

It just struck me that since we are using CARP, is there a possibility that CARP is somehow causing us all this grief. I was quite surprised to see so little traffic on this topic. Either not very many people are using VPN here, or they are not having the trouble. But for it to work fine one minute and then stop with no changes being made is driving me mad.
June 11, 2026, 04:11:48 PM #1
Quote from: lshantz on June 11, 2026, 12:25:36 AMEither not very many people are using VPN here, or they are not having the trouble.
I guess, it's the latter one.

I'm running two s2s IPSec, one s2s OpenVPN and three OpenVPN access servers on one instance. On another one I'm running the other site of the s2s OpenVPN plus an IPSec access server. All are running very stable.

If you have dropouts on both, there is probably an issue with the WAN connection or the hardware.
So check the system log for hints, enable gateway monitoring using a public monitoring IP, post logs...
June 11, 2026, 08:41:38 PM #2
We have 2 x DEC2752's with IPSec between them and about 50 OpenVPN users.  All 100% stable. Running BE of course.
Print
Go Up Pages1
User actions