Skip to main content
HS08
HS08
Visitor III
August 27, 2025
Question

Fortigate as SSL VPN Client

  • August 27, 2025
  • 1 reply
  • 647 views

When i configure my fortigate lab as ssl vpn client to connect to the fortigate at office, why when ssl vpn connected then internal network under fortigate lab is not reachable to connect to the intenret by hostname? Actualy fortigate on the lab act as dns server also.

Traffic from lab to the internet is working fine, i can ping by ip (8.8.8.8) but the issue i can't ping by hostname.

1 reply

AEK
SuperUser
AEK
SuperUser
August 27, 2025

So it is a DNS issue.

I guess you already checked this guide.

https://docs.fortinet.com/document/fortigate/7.4.2/administration-guide/508779/fortigate-as-ssl-vpn-client

Is your FGT LAB the DNS server for your internal network?

Can FGT LAB ping hostnames when connected to VPN?

Does the DNS server of the FGT LAB change when connected to VPN?

AEK
    HS08
    HS08Author
    Visitor III
    August 27, 2025

    I have internal network in the lab and dns server in the FGT Lab is for lab network only.

    The FGT itself can't ping using  hostname when ssl vpn connected.

    When FGT LAB connected to the ssl vpn the ip of dns server in not change.

    AEK
    SuperUser
    AEK
    SuperUser
    August 27, 2025

    Try check how dns request is routed once connected to VPN. Probably it is sent through the tunnel.

    AEK
    Terms & ConditionsAccessibility statement