After a certain amount of time, ESP transport mode fails or fails over to SSL for VPN tunneling clients that are connected or attempting to connect. This issue will occur when the all conditions are met:
- Network Connect and Pulse Secure Desktop users connecting to a PCS device running 8.2R1, 8.2R1.1 or 8.2R2 with no previous symptoms or problems in previous builds.
- After upgrading, the issue may take some time to manifest as it depends on the number of NC tunnels that are setup since the last reboot.
- When the issue is triggered, all active VPN tunnels that are connected via ESP will be failed over to SSL and any additional users will not be able to reconnect.
Important Note: If any VPN Tunneling Connection Profiles are configured to allow ESP transport only, as seen in the screenshot below:
Then VPN Tunnel users will not be able to establish a VPN tunnel using SSL and these connections will be dropped.