ufcan.blogg.se - Fortinet vpn ssl

This issue can occur when there are multiple interfaces connected to the Internet (for example, a dual WAN). Tunnel-mode connection shuts down after a few seconds. Read the Release Notes to ensure that the version of FortiClient you are using is compatible with your version of FortiOS. Ensure that you are using the correct port number in the URL.

Check the URL you are attempting to connect to.Also, verify that the SSL VPN policy is configured correctly. Go to VPN > SSL-VPN Settings and check the SSL VPN port assignment.

There is no response from the SSL VPN URL. The suggestions below are not exhaustive, and may not reflect your network topology. The following is a list of potential issues.

Enter the following to stop displaying debug messages:.

SSL established: DHE-RSA-AES256-SHA SSLv3 Kx=DH Au=RSA Enc=AES(256) Mac=SHA1 SSL state:SSL negotiation finished successfully (172.20.120.12) SSL state:SSLv3 read finished A:system lib(172.20.120.12) SSL state:SSLv3 write change cipher spec A (172.20.120.12) The CLI displays debug output similar to the following:įGT60C3G10002814 # SSL state:before/accept initialization (172.20.120.12) To view the debug messages, log into the SSL VPN portal.

Enter the following to enable displaying debug messages:.

The output also indicates that debugging has not been enabled for any software systems. The output above indicates that debug output is disabled, so debug messages are not displayed. This output verifies that SSL VPN debugging is enabled with a debug level of -1, and shows what filters are in place.

Enter the following command to verify the debug configuration:.

The -1 debug level produces detailed results. This command enables debugging of SSL VPN with a debug level of -1.

Enter the following to display debug messages for SSL VPN:.

Disaster Recovery and Business Continuity.