Hi,

I switched from a pfSense box to an ER605 in order to simplify my setup and to fully integrate my devices in the Omada ecosystem.

The migration went well, but i have an issue with OpenVPN.

I have a couple of self hosted services, that i want to be able to access H24. When i had my pfsense Box and i was out of home, i used to use OpenVPN. With pfsense, once established, the connection from my android phone was stable through the day, with no need to reconnect.

After my switch to Omada, OpenVPN was very easy to configure with the same port that i used with my pfsense box. The .ovpn file enabled me to get a connexion without any issue. I get access to all my services along with my lan.

However, i quickly found out that the connexion was not stable. After 10 to 15 min idling, the vpn app still report that it is connected to the server. However, when i try to access the lan or any of the services, i get a timeout. The only workaround is to connect with a different profile. Reconnecting or disconnecting and connecting back with the same profile get me a "fatal error" in the vpn app log.

This is reproductible each and every time i connect and let the connection idling, either as a full tunnel or a split tunnel, either with OpenVPN Connect or with OpenVPN for Android apps. I tried to compare the .ovpn config file i used with my pfsense to the ones i generated, but cant find any major difference. Both are UDP based, and only difference is LZO compression.

I am at your disposal to provide any data required.

P.S. : Am doubled-NATd atm (yikes !!), Open VPN ports are forwarded on ISP router to the ER605 IP and the public ip has been replaced in the .ovpn config files. ISP Router is unstable in bridge mod, hence the double-NAT.

Edit1: Controller is software, ver. 5.13.30.8