Business CommunityGatewaysReporting Issue - Omada Linux Controller + ER7412-M2 v1.0 (Loss of VPN requiring reboot)
Gateways

Reporting Issue - Omada Linux Controller + ER7412-M2 v1.0 (Loss of VPN requiring reboot)

Reporting Issue - Omada Linux Controller + ER7412-M2 v1.0 (Loss of VPN requiring reboot)

Reporting Issue - Omada Linux Controller + ER7412-M2 v1.0 (Loss of VPN requiring reboot)
Reporting Issue - Omada Linux Controller + ER7412-M2 v1.0 (Loss of VPN requiring reboot)
Saturday - last edited Monday
Tags: #VPN
Model: ER7412-M2   Omada Software Controller (Linux)  
Hardware Version: V1
Firmware Version: 1.1.0

ER-7412-M2 V1.0 with firmware 1.1.0

Linux Omada Controller version 6.2.10.17

 

Random uptime of around 40-50 days if I can take a guess.  I lost VPN access today, luckily I had a Cloudflare backup.  So I rebooted the router and away we went again.

 

The only thing different I had opened SMTP a week ago, confirming it was being attacked on the mail server after I had done this (it was a temp thing, now closed).

 

But I am just reporting that my router which hardly gets firmware updates, suffered an issue loosing all VPN ......  needing a reboot to fix.  We may have also been suffering packet loss also after opening this SMTP port which I presume was pretty heavily attacked looking at the mail server logs for that time.

 

Still also waiting for the custom dns for reserved IP's in the DHCP reservations, life traffic like Unifi have on their dashboards etc and in the client lists.......  *just to make mention of some other things*

 

 

  0      
0
#1
Options
1 Reply
Re:Reporting Issue - Omada Linux Controller + ER7412-M2 v1.0 (Loss of VPN requiring reboot)
Yesterday

Hi  @MrHC1983 

 

Thanks for posting here.

“all VPN stops working after ~40–50 days of uptime, and a reboot fixes it”—usually doesn’t mean the VPN feature itself suddenly broke. More commonly, the device enters an abnormal state after long runtimes combined with sustained external traffic.

Temporarily opening the SMTP port and then getting heavily scanned/attacked can significantly increase NAT sessions, connection-tracking (conntrack) table usage, stateful firewall workload, and logging overhead. If the attack traffic creates many short-lived connections or malformed/unusual packets, it can trigger resource exhaustion (memory pressure, conntrack table full, high CPU), hit edge cases in the driver/kernel network stack, or cause a process hang. That can then impact IPSec/L2TP/OpenVPN tunnel negotiation and forwarding, presenting as “all VPN down,” sometimes along with packet loss.

A reboot clears state tables and resets networking processes, so it recovers temporarily.

 

Typical recommendations are: keep unnecessary ports closed, enable rate limiting/IPS where available, monitor conntrack and memory usage, and stay current on firmware to address long-uptime stability issues.

Wish you a happy life and smooth network usage!  >Get the Latest Omada SDN Controller Releases Here< >Get the Latest Firmware Releases for Omada Routers Here< >Experience the Latest Omada EAP Firmware<
  0  
0
#2
Options

Information

Helpful: 0

Views: 154

Replies: 1

Tags

VPN