Last Modified: Apr 28, 2025
Affected Product(s):
APM-Clients APM
Fixed In:
7.2.4.6
Opened: Nov 14, 2023 Severity: 4-Minor
While closing the tunnel, it starts closing the SVPN process, and before closing, it needs to restore the route table similar to the route entries before VPN establishment. If number of route entries is greater than normal, it takes longer than the set timeout. If a timeout is triggered, then the cleanup process stops the SVPN process, which is the process of restoring the route entries. Hence, all the route entries are not restored properly.
As route entries are not restored properly in the routing table, some of traffic cannot reach to the destination.
There were more route entries than normally expected.
Configure a smaller number of route entries
During cleanup, before closing the SVPN process forcefully, EdgeClient polls the status of the SVPN closure, sometimes with an interval of 500 miliseconds. If it still exists, then it needs a cleanup. But in this case SVPN will closed automatically once all route entries are restored.