SSL VPN Split DNS configured according to docs but not working.

Forum|Forum|1 year ago
May 20, 2024
1 reply
1263 views

According to this, only traffic to my domain should be crossing the VPN.

config vpn ssl web portal
edit Secured-Access
set tunnel-mode enable
set auto-connect enable
set keep-alive enable
set save-password enable
set ip-pools Secured-Pool
set split-tunneling-routing-address Secured-Routing
set forticlient-download-method ssl-vpn
config split-dns
edit 1
set domains Secured-Domain
set dns-server1 My-DNS1
set dns-server2 My-DNS2
next
end
next
end

However, I see non-secured domain resolution against my servers. What would be the cause of this? Are there any supplemental configurations that the above referenced technical tip doesn't mention?

AEK

SuperUser

Is it FortiClient or FortiClient VPN?

Which FortiClient version?

Which Windows version?

Did you enable split-tunneling?

set split-tunneling enable

AEK

48sivadmAuthor

New Member

Windows 11 Enterprise 22H2 FortiClient EMS 7.2.3 Forticlient 7.2.4

Windows 11 Pro 23H2 Forticlient VPN Only 7.0.7

Split Tunneling is enabled. If it weren't, I wouldn't be able to browse the internet because the tunnel access is not set for all traffic.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded