Connection lost inside SSL VPN tunnel
Freshman Member
(USG 110) we still have problems with lost connections inside SSL VPN tunnel. Last documented issues:
Martin
Accepted Solution
-
Kernel panics was resolved with help of @Zyxel_Emily . In case of questions, you can contact me with private message.
0
All Replies
-
@Martin_Kuchar
According to the issue of RDP Connection lost inside SSL VPN tunnel,
I will send you the firmware via private message, please has a check.
Charlie0 -
Thank You, Charlie for the Firmware. We now using it and testing. Will reply more later.Martin0
-
Hi, the provided firmware not solve our problem. Still the same - successfull connection with SecuExtender, but no connection to internal network, or lost connection to internal network after some time.Is there possibility, that is the same as discused here?:If yes, this is not solved in provided firmware ?Thank you,Martin
0 -
@Martin_Kuchar
The firmware which I shared with you is latest version.
Moreover, I tested it on my lab internally near one day without any issue.
Therefore, can you private message the time for remote access?
Charlie
0 -
Hello,
we finaly made the analysis. The problem as described in the first post is problem of Zyxel USG110 all firmware from 2/2017 (when we bought one) up to now. The problem is not in SecuExtender, but insire USG.
After USG reboot, some time it will work fine. Many hours to 30 days. After this time something probably overflow the internal cache or memory management and in the USG starts some processes dying. It is to see in log (only when debug is ON) with:
kernel: warn_alloc_failed: 17 callbacks suppressed
kernel: swapper/2: page allocation failure: order:4, mode:0x200020
Followed by Kernel stack trace. When this starts happened, it will never recovery from this state and all new or existed incomming VPN connection will lost internal route. The only way is reboot router.
This problem exists accross all firmwares in 2017, 2018 and 2019.
Log fragment attached. Happy reading and please resolve.. The VPN is unusable for serious working!
Martin Kuchar
0 -
Hi @Martin_Kuchar,
We are analyzing the logs and need to clarify the issue with you.
I will contact you in private message for more information.
0 -
Hello, does anyone working our problem ?
- specified in detail on this thread October 25, 2019 12:12AM ?
Thanks for answer ...
0 -
Hi @kyssling,
Yes, we are still working on this case with Martin_Kuchar’s help. We will update the result in this thread once we’ve got further conclusion.
0 -
We are using SSL VPN since we bought the USG110 years ago, mainly in connection with RDP for remotely working on our office servers and client machines. Presently we are using the current SecuExternder Version for manual operated SSL VPN tunnel. The tunnels will be established for app. some minutes up to some hours but normally not for a whole day.
Until now we didn't experience the a.m. issues of Martin. The last time we've got some weird behaviour, where connections getting unstable, was caused by fault settings. One user has been forgotten to be added to our SSLVPN_User_Group which has an own rule in our Policy Control for incoming tunnel traffic.
We are interested in this thread and keep it under surveillance. If you need our SSL VPN settings to compare with yours, please let me know.
0 -
Kernel panics was resolved with help of @Zyxel_Emily . In case of questions, you can contact me with private message.
0
Zyxel Employee
Ally Member
Master Member
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 144 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.6K Security
- 237 USG FLEX H Series
- 267 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.3K Consumer Product
- 247 Service & License
- 384 News and Release
- 83 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight
