kaika313  Freshman Member

Hi @USG_User, thank you for your advice. I've tried to set the session limit to 1000 per host and it seems that for now, active sessions stay within a normal range. Some devices went far beyond 1000 sessions each so I think they were causing the USG to crash. Most of these sessions were multiple UDP connections toward…

Hi @Zyxel_Can, in both sections they're already removed. But, if I try to remove EZMODE from VPN Connection nothing happens. I click Yes when the warning appears but EZMODE VPN stays there... is there a way to remove it manually as suggested by @PeterUK ? Thank you

I've just tried. When I choose the alternative VPN connection (here named "Default_L2TP_VPN_Connection") and everything else related to it and click on Apply nothing happens. The firewall ignores it so I cannot test it.

It redirects me to VPN→ L2TP VPN. Here, if uncheck Enable L2TP Over IPSec, in VPN Connection I select none and then click on Apply it doesn't apply so probably this is the reason it doesn't let me to delete it because it remains enabled. What other options I have?

@PeterUK Ok for the idle detection but (sorry for the stupid question) won't the reduced lease time disconnect the user or disturb active connections? Thank you

Hi @Zyxel_Jerry, thank you for your reply and for the info. Kind Regards

Well, after hours spent searching throughout business support forum last Saturday night I finally reach this post that shed light on our problem. https://businessforum.zyxel.com/discussion/2519/no-default-dns-for-wan1-on-usg40/p2 The environment is identical to the user’s who post the question, in fact I have the 1:1 NAT…

UPDATE: now our ISP has removed any block and I can establish the L2TP VPN connection! Thank you for your support

Hi @Zyxel_Cooldia, this is the result from CLI packet capture: 10:47:57.000665 IP External IP > USG public IP: icmp: echo request 10:47:57.001126 IP USG public IP > External IP: icmp: echo reply 10:47:58.001636 IP External IP > USG public IP: icmp: echo request 10:47:58.002127 IP USG public IP > External IP: icmp: echo…

Hi @Zyxel_Cooldia, I cannot connect physically to ISP's gateway and If I set ISP's gateway in USG connection does not work so I'm forced to use these settings and go through Public IP 1.

HI @Zyxel_Cooldia, here's the complete topology. I have to keep them both connected as the ISP router manages some IP phones connected to the network and we we tried to leave it connected just to the USG they didn't worked anymore. Please let me know if you need further information. Thank you

Hi Zyxel_Cooldia, this is the log that USG record as soon as I try to connect to SSL VPN. Please tell me if there are further information I have to send you. Thank you

Hi @Zyxel_Stanley, ok, it happens with different ISPs so to overcome this issue we're testing SSL VPN when connecting through 3G/4G network as it seems to work without issues. Thank you for your support Kari

Hi @Zyxel_Stanley, thank you for your reply. So, the short answer is that there's nothing I could do to overcome this problem...? Thank you

Hi @Zyxel_Stanley I've also tried with different ISPs with the same result. So I thought that it could be that I've missed or made mistakes with settings. Attached you'll find the log with the comparison between WiFi connection where everything goes right and after the connection with the same device but using ISP…