Skip to main content
User10
User10
New Member
February 17, 2025
Question

Fortigate 200E issue with the VPN

  • February 17, 2025
  • 2 replies
  • 2493 views

Hello,

I used two fortigate 200E, i have an issue with the vpn.

I'm on the IT team,

I can connect the site with the vpn client (forticlient 7.0.3.0193) but only the files of our serveur file.

No ping is working through the VPN or RDP or anything else except the file of the server file.

I have an administrator acces on the VPN and i allow everything but it isn't working

Here is the configuration of the vpn.

I made a user group "G-SSL-ADMIN" with the users allowed

Screen 1

GSSL Admin.JPG

On SSL-VPN Portals i made a full access group

Screen 2

SSL VPN Portals.JPG

SSL-VPN Personal Bookmarks.

 

VPN SSL Bookmark.JPG

 

Someone has an idea ?

 

2 replies

GauravPandya
GauravPandya
Explorer
February 17, 2025

Can you please share screenshot of SSL VPN setting and configured policy?

User10
User10Author
New Member
February 17, 2025

VPN SSL Setting 1.JPG

VPN SSL Setting 2.JPG

  

GauravPandya
GauravPandya
Explorer
February 17, 2025

Please share configured policy screenshot. I just want to verify if destination and services are allowed in policy or not.

Sheikh
Staff
Sheikh
Staff
February 17, 2025

Hello @User10 

You can enable the following debug logs and test again.

 

diagnose debug disable

diagnose debug reset
diagnose debug cons time enable

diag vpn ssl debug-filter src-addr4 x.x.x.x (Replace x.x.x.x with the IP address of the PC connected to the SSL VPN)
diagnose debug app sslvpn -1

diagnose debug enable

 

***********reproduce the issue**********

 

regards,

 

Sheikh

If you have found a solution, please like and mark it as solved to make it easily accessible for everyone.
    User10
    User10Author
    New Member
    February 18, 2025

    Hello,

    Thanks for the reply.

    I'm logged on the firewall CLI Console there is no ssh or telnet enable.

     

    When i type : diagnose debug disable

    Command.JPG

     

    User10
    User10Author
    New Member
    February 19, 2025

    I can't make any diagnostic, because the command are not working :

     

    diagnose debug disable

    diagnose debug reset
    diagnose debug cons time enable

    diag vpn ssl debug-filter src-addr4 x.x.x.x (Replace x.x.x.x with the IP address of the PC connected to the SSL VPN)
    diagnose debug app sslvpn -1

    diagnose debug enable

     

    Someone has an idea ?

    Terms & ConditionsAccessibility statement