EdgeMAX - L2TP Server setup issue - "L2TP VPN configuration error: IPsec did not start."

Am using this guide...

https://help.ubnt.com/hc/en-us/articles/204950294-EdgeMAX-L2TP-Server

... to attempt to setup a VPN.

I had a previous VPN that worked well, but dissapeared from the config, possibly due to a couple of firmware updates.

I enter the configuration per the link above, have tried both the DHCP and Static IP options.

My connection is Australian FTTN VDSL via a modem in bridge mode.

Modem is conected to eth0 and the same ip address is assigned by the ISP every time.

Connection type is IPoE

CLI view of commands as entered

user@ubnt:~$ configure
[edit]
user@ubnt# set vpn l2tp remote-access dhcp-interface eth0
[edit]
user@ubnt# set vpn l2tp remote-access client-ip-pool start 10.0.0.201
[edit]
user@ubnt# set vpn l2tp remote-access client-ip-pool stop 10.0.0.210
[edit]
user@ubnt# set vpn l2tp remote-access ipsec-settings authentication mode pre-shared-secret
[edit]
user@ubnt# set vpn l2tp remote-access ipsec-settings authentication pre-shared-secret beatrixkiddo21
[edit]
user@ubnt# set vpn l2tp remote-access authentication mode local
[edit]
user@ubnt# set vpn l2tp remote-access authentication local-users username user password ********
[edit]
user@ubnt# set vpn l2tp remote-access dns-servers server-1 8.8.8.8
[edit]
user@ubnt# set vpn l2tp remote-access dns-servers server-2 8.8.4.4
[edit]
user@ubnt# commit
[ vpn ]
L2TP VPN configuration error: IPsec did not start.

Commit failed
[edit]
user@ubnt#

CLI view of sanitized show

user@ubnt# show vpn l2tp remote-access
+authentication {
+    local-users {
+        username user {
+            password ********
+        }
+    }
+    mode local
+}
+client-ip-pool {
+    start 10.0.0.201
+    stop 10.0.0.210
+}
+dhcp-interface eth0
+dns-servers {
+    server-1 8.8.8.8
+    server-2 8.8.4.4
+}
+ipsec-settings {
+    authentication {
+        mode pre-shared-secret
+        pre-shared-secret ********
+    }
+}
[edit]
user@ubnt#

Just a thought, i do have from the wizard load balancing configured between eth0 & eth1

This was once used when i had an unreliable internet conection and was falling back to another service.

This is no longer used.

I have read a few suggestions that suggest dynamic addresses are not supported, but that was back ~ firmware 1.6

Also on the side, is there a CLI command to remove and/or replace a line of configuration?

At this point i'm starting from scratch with every attempt by using "exit discard" .