WAN problem for internal services

Kuma

Hi, first post here for me !

I have a problem with a new install with a new ISP.

I use a SG-3100 with 4 network.

WAN with a fiber ONT (nokia) from my ISP : DHCP --> 10.153.0.198/31 ; GW --> 10.153.0.199
This ISP use a specific protocol IPv4 CGNAT and attribute an IP in a private network.

OPT2 (4G) with a TRB140 4G modem in router mode : DHCP --> 192.168.2.201/24 ; GW 192.168.2.1

LAN : 192.168.1.1/24

OpenVPN client for remote access management : DHCP 10.10.103.2/30 ; GW 10.10.103.1

I also use remote zabbix server for collect data

My problem :
When WAN is the default route, unable to connect VPN and receive information from zabbix client.
Client traffic is working fine and I can ping and FQDN from Diagnostics -> Ping.
However, I can't make a curl request to one of my servers.

If the 4G network is on by default, everything works and I even manage to mount the VPN via the WAN.

I disabled blocks in Interface -> WAN -> Reserved Networks.
I forced the use of local DNS (208.67.222.222 / 8.8.8.8).
No blocking rules in the firewall, no outgoing or incoming nat.
I tried changing the OpenVPN tunnel IP address to another range but without success.

The only log I have is from OpenVPN when it fails to connect:

write UDPv4: Permission denied (code=13)

Do you have any idea where the problem could come from?

Thanks for help !