SSL VPN connection not stable. High latency ping times

Hi Hung Ho 

Thank you for reaching out to the Community!

Is there any IPsec site to site tunnel configured on the firewall? If yes, is it a stable connection? If you have unstable IPsec tunnels then rune the following command from the console.

set vpn conn-remove-tunnel-up disable

• When disabled, it will not flush the connections when IPSec tunnels come up.

Follow this KBA to access the console: Sophos XG Firewall: How to SSH to the firewall using PuTTY utility

Type 4 to access the Device console.

Note: If the information above does not apply in your case, please provide client logs for further investigation.

Thanks,

Hi Hung Ho 

Thank you for reaching out to the Community!

Is there any IPsec site to site tunnel configured on the firewall? If yes, is it a stable connection? If you have unstable IPsec tunnels then rune the following command from the console.

set vpn conn-remove-tunnel-up disable

• When disabled, it will not flush the connections when IPSec tunnels come up.

Follow this KBA to access the console: Sophos XG Firewall: How to SSH to the firewall using PuTTY utility

Type 4 to access the Device console.

Note: If the information above does not apply in your case, please provide client logs for further investigation.

Thanks,

Hi H_Patel,

Yes, I have configured IPSec site to site tunnel on Firewall.

Is IPSec affect SSL VPN?

Thanks,

Jacky

Hi Hung Ho 

When the IPsec tunnel comes up, it will drop all UDP sessions, but you can disable this behavior. As you have an SSL VPN configured with UDP protocol, I would advise you to run the command I provided in my first response and monitor the issue and let us know how it turns out for you. 

Thanks,

Hi H_Patel,

Ok, I disabled conn-remove-tunnel-up and waiting for feedback from users. I hope it solves my issue. I will inform you later. Many thanks.