Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • +4 person also asked this people also asked this
  • Locked Locked
  • Replies 16 replies
  • Subscribers 47 subscribers
  • Views 5748 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Problem with many User on V18

TimFranken

Today I had to realize that the V18 still has problems with the SSL-VPN access and several users.

Due to the current situation, home office has been prescribed in our company and so today almost 30 people had to work via SSL-VPN. But this seems to be too much for the V18. From about 20 users the V18 simply restarts without notice.

I watched the whole thing 3-4 times within an hour and had to reboot to V17.5. There the problem does not exist.

We have an XG330 Rev.2 so the Hardware is not the Problem.



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to FloSupport

    Just another reset. I can see in /log/sslvpn.log.0:

    Thu Mar 19 09:25:29 2020 us=327051 [5669] x.x@x.x/::ffff:x.x.x.x UDPv6 READ [97] from
    [AF_INET6]::ffff:x.x.x.x:56236 (via ::ffff:x.x.x.x%PortB): P_DATA_V1 kid=0 DATA len=96
    Thu Mar 19 09:25:29 2020 us=327113 [5669]x.x@x.x/::ffff:x.x.x.x TUN WRITE [40]
    Thu Mar 19 09:25:29 2020 us=393643 [5669] event_wait : Interrupted system call (code=4)
    Thu Mar 19 09:28:53 2020 us=50297 [9848] Current Parameter Settings:
    Thu Mar 19 09:28:53 2020 us=51104 [9848] config = '/cfs/system/openvpn/openvpn.conf'

    And in /log/syslog.log:

    Mar 19 09:20:30 (none) user.debug heartbeat: [SEND-TLV] No response from autherntication server expected.
    Mar 19 09:21:02 (none) user.err sslvpn: Sending authtlv to access_server. msg_type: 1, user_name: x.x@x.x, ipaddress: 172.18.1.15
    ..........................................................................................................
    ..........................................................................................................
    ..........................................................................................................
    ..........................................................................................................
    ........................................Mar 19 09:22:08 (none) syslog.info syslogd started: BusyBox v1.21.
    1
    Mar 19 09:22:08 (none) user.notice kernel: klogd started: BusyBox v1.21.1 (2020-03-04 19:44:36 CET)
    Mar 19 09:22:08 (none) user.notice kernel: [ 0.000000] Linux version 4.14.38 (jenkins@ci-1) (gcc versio
    n 7.3.0 (OpenWrt GCC 7.3.0 7185-ged7f3dd9)) #2 SMP Wed Mar 4 22:26:05 CET 2020
    Mar 19 09:22:08 (none) user.info kernel: [ 0.000000] Command line: BOOT_IMAGE=/18_0_0_339 quiet console
    =tty0 console=ttyS0,38400n8

    15th SSLVPN connection led to kernel panic.

    We've just downgraded to SFOS 17.5.9 MR-10 and we're waiting for patch.

Unfiltered HTML