SSL VPN / JAVA web VPN

Welcome to the forums. There have been a number of complaints regarding dropping RDP sessions. What platform and firmware level are we working with?

we are running 3.00-b0750(MR7 Patch 7) on a Fortigate-200A Don

I have also experienced issues with Java RDP session. All I get is: " Connection Terminated Internal Protocol Error" I' m using 4.1... and, IE7 or IE8 and the latest Java version. Any ideas?

Hello I have the same problem as described by dsmmh in the first post. Users get disconnected alot and have to reconnect. It seems like the java RDP client is not that good? Have anyone found a solution for the problem. Is there a better RDP client version in the latest FortiOS v4.0 release?? Thanks :)

I am having this same exact issue. Connect, runs fine and then the client just closes randomly. In most cases, users cannot just click the bookmark to start the client again. They have to log out completely and re-login.

we replaced all our sonicwall' s with fortinets and this is the only major complaint we have. The sonicwall sslvpn portal was much better at rdp. Sure it would disconnect sometimes too but nowhere the amount of this java rdp client. What makes it a lot worse is the lack of sso. Sure you can put the -u and -p switches but most of our users are not very technical and dont understand how to do that; therefore it takes much longer for them to sign back in once they get disconnected. I was told by support that version 4.2 is supposed to have much easier sso setup and the -f switch will actually work for full screen mode.

I have contacted Fortinet support and have done some research of my own... This may have fixed the issue, but I need to do more testing to be 100% sure... Its an intermittent problem for me (4.1MR3). I produced many debug reports for Fortinet, but nothing showed, they believe one of the two solutions below is the answer. ticket below: --------------------------------------------------------------------- Dear Support, We are planning to release SSL RDP to approx 100 users over the next few weeks. However, I have noticed that occasionally the JAVA RDP client drops connection to our Windows 2003 Terminal servers and displays following error message " Connection terminated - Internal Protocol Error" (Figure 1), and the server event log reports " The RDP protocol component DATA ENCRYPTION detected an error in the protocol stream and has disconnected the client" (Figure 2). It' s worth noting that we don' t experience these connection issues when using the native Windows RDP client (using IPSEC or SSL Tunnel Mode), so it appears that there may be an issue with the Fortinet JAVA RDP client or how the data is encapsulated. There is a Microsoft knowledge base article (KB323497) that explains the symptoms and a possible registry fix (not tested yet). Another forum suggests disabling " large send offload" on the NIC as this can interrupt the RDP stream (I am currently testing this solution). The Fortinet forum http://support.fortinet.com/forum/tm.asp?m=57360&p=2&tmode=1&smode=1 also suggests that other users are having similar problems. Please can you help? ---------------------------------------------------------------------------- It would be useful if someone else can try the above and compare results. Regards - Rob

I think the rdp client disconnecting due to private certificate key on the Terminal Services server not to be synchronized with the dll values on the server. so you can try with the registry tweak by deleting the Certificate, X509 Certificate and X509 Certificate ID parameters.

Is the support able to help regarding anything? But seriously, my users complain is about the initial speed of the RDP applet coming up & the default 1024x768 resolution (we are not in 90' s any more) Seb

Maybe this is a very old known problem. For a couple of years ago I increased session timeout for the RDP-protocol. This worked for me. config system session_ttl set default 300 config port edit 3389 set timeout 28800 next end end Check CLI-guide first, some of these command can be changed. Regards Christer