Hello,
I would like to kick off by letting you know that I'm no network guy so sorry if I'm missing something obvious here. My organization have deployed and is currently using Always On VPN for all our end users. In these pandemic times the service is heavily used and I'm happy it appears to be working fine for the vast majority. A handful of users' does however experience issues when using Internet provided by their ISPs but work fine when using their cellphones as hotspots. The end users receive an 809 error when using their ISP net, but there is no error at the network firewall or the NPS server.
The end users event log looks like this:
ID20221: The user "" has started dialing a VPN connection using a per-user connection profile named ""
ID20222: The user "" is trying to establish a link to the Remote Access Server for the connection named "" using the following device:
ID20223: The user "" has successfully established a link to the Remote Access Server using the following device
ID20224: The link to the Remote Access Server has been established by user ""
ID20227: The user "" dialed a connection named "" which has failed. The error code returned on failure is 809
So, I would assume there is something on the end users' private routers which cause this problem, but I've performed remote sessions with 3 users and their routers and can't find any specific settings which would cause this issue. One additional weird note is that one user tried to bypass the router by connecting directly to the ethernet cable intended for the router. He was able to browse Internet fine but still was not able to connect to VPN. We also established communication with one of the vendors of routers and confirmed it should be working without any additional configuration.
Does anyone have any tips where I should investigate further? Since it does work via hotspot I've ruled out any issues of authentication on the NPS side such as certificates and security groups. I've also confirmed that the end user can resolve the public FQDN. I've manually tried to recreate the VPN profile but without any luck.
Hope someone can provide insight to what I might have missed😊
Please remember to mark the replies as answers if they helped.