Hi,

for the past couple days I have been trying to fix a L2TP site to site connection between two ER605's both managed by the same Omada controller.
A couple days ago, the connection between the two sites started sporadically failing. Since then I have re-created the Tunnel, but I was unable to restore normal operation.

My setup:
Two sites,:

• A with a public static IP 
• B behind a CG NAT

Both have a ER605, same hardware and software version. Both are managed using a Omada Software controller (Version: 5.15.24.19)

Site A has the following VPN server config:

And the following user for Site B:

Site B has the following VPN client config:



Now, with this config I can see the VPN tunnel under Insights > VPN. Both IPSEC and L2TP.
I can also ping machines from A to B and the other way round. I can ssh from B to A, but not the other way round. I cannot access any HTTP resources in either direction.
So the tunnel must be at least partially working, as the ICMP packets are getting trough, but somehow HTTP and SSH in one direction is blocked.

Does anyone have any advice on this matter? I was unable to gleam any useful information from the logs.