We have a client with an Edge Router Lite FW version 2.0.8 which is having issues with the L2TP VPN. Clients can properly connect to the VPN and get an IP but after the first few seconds of being connected access to the file servers start getting timeouts, web browsing basically either doesn't work or slows so much it's really not usable. A router reboot fixes whatever is causing the issue for some days, but I would really like to figure out how to resolve this without doing a reboot.

I have restarted the vpn services but that doesn't seem to fix the issue.

I can't seem to find anything outside of the ordinary in the logs that would help. Only thing weird is this when the vpn is having the issues ksoftirqd/0 and 1 start using most of the CPU:

Any ideas?
@scottalanmiller

Getting this timeout errors on several CentOS servers hosted on Vultr. It basically goes through the mirror list until there are no more mirrors to try and the update fails.

kernel-tools-libs-3.10.0-1062. FAILED                                           
http://mirror.grid.uchicago.edu/pub/linux/centos/7.7.1908/updates/x86_64/Packages/kernel-tools-libs-3.10.0-1062.7.1.el7.x86_64.rpm: [Errno 12] Timeout on http://mirror.grid.uchicago.edu/pub/linux/centos/7.7.1908/updates/x86_64/Packages/kernel-tools-libs-3.10.0-1062.7.1.el7.x86_64.rpm: (28, 'Operation too slow. Less than 1000 bytes/sec transferred the last 30 seconds')
Trying other mirror.
kernel-tools-3.10.0-1062.7.1.e FAILED                                          
http://mirror.team-cymru.com/CentOS/7.7.1908/updates/x86_64/Packages/kernel-tools-3.10.0-1062.7.1.el7.x86_64.rpm: [Errno 12] Timeout on http://mirror.team-cymru.com/CentOS/7.7.1908/updates/x86_64/Packages/kernel-tools-3.10.0-1062.7.1.el7.x86_64.rpm: (28, 'Operation too slow. Less than 1000 bytes/sec transferred the last 30 seconds')
Trying other mirror.
kernel-3.10.0-1062.7.1.el7.x86 FAILED                                           
http://mirror.grid.uchicago.edu/pub/linux/centos/7.7.1908/updates/x86_64/Packages/kernel-3.10.0-1062.7.1.el7.x86_64.rpm: [Errno 12] Timeout on http://mirror.grid.uchicago.edu/pub/linux/centos/7.7.1908/updates/x86_64/Packages/kernel-3.10.0-1062.7.1.el7.x86_64.rpm: (28, 'Operation too slow. Less than 1000 bytes/sec transferred the last 30 seconds')
Trying other mirror.

Any idea why this could be happening?

Just setup a traffic-policy shaper to test:

20% bandwidth for voip guaranteed with a ceiling of 100% bandwidth
30% bandwidth for USERS PC guaranteed with a ceiling of 100% bandwidth
50% bandwidth for ALL others guaranteed with a ceiling of 100% bandwidth

Does this sound reasonable?

I have been using the Smart queue for the office, to my knowledge and testing QoS is working properly as VoIP has been working without issues during heavy download periods. I have been even having a call during these times and the call was crystal clear. A couple of users are reporting very slow web browsing around the time of the downloads and considering they use mainly web apps this is affecting them.

Is there something I could do to help this? Can regular http file downloads even be tagged/categorized as something different than regular web browsing?

Router is an EdgeRouter lite running v 2.0.6
Internet from AT&T 50 / 50
Files downloaded are 4GB+ files from azure

Maybe try a different QoS method?

@scottalanmiller @JaredBusch

@travisdh1 Thank you, the change there solved the issue.

@DustinB3403 Windows, its actually a small office so around 6 computers with the same issue, 3 - windows 7 and 3- windows 10.

Some settings we have:

Driver download says duplex is on by default:

I would still think with the settings as we have them it should print double-sided.

We have a client that owns a HP LaserJet Pro MFP M428fdn, even though driver settings are set to not do double sided printing it still keeps trying to do so. Duplex setting in the printers control panel has duplex disabled by default as well not sure why this is happening.

Has anyone experienced something like this and know wtf could be happening with this printer?

@Pete-S start and type winver

@mroth911 You would have to setup a reverse proxy.