Skip to main content
Spidler
Spidler
New Member
March 13, 2020
Solved

SSLVPN and RDP disconnects

  • March 13, 2020
  • 4 replies
  • 59803 views

Hey folks,

 

Ever since upgrading my 200D to 6.0.5 (now 6.0.9) when using the FC to connect to the SSL VPN, I have constant disconnects with Outlook and RDP sessions. Pings never fail or timeout, but I get disconnected from my RDP sessions every minute or so, making it completely unusable.

I have a ticket open with support, but honestly, they seem to be dragging their feet. Anyone else seen this behavior and figured out a solution? I have 150 users about to be forced to WFH and this is completely unacceptable. The only work-around I've found is using an IPSEC connection, but that's not realistic. 

Best answer by Spidler
I updated the fw on Saturday morning. I've had zero issues in the last 30 hours. More importantly, no disconnects of authenticated traffic - https, mapi, rdp, etc. It solved our issues, but I hate running an interim build on what is essentially the brain stem of my network.

4 replies

Toshi_Esumi
SuperUser
Toshi_Esumi
SuperUser
March 13, 2020

At least 6.0.9 has a known issue with drops over ssl vpn, which I posted on this forum about a month ago. They (TAC) said it would be fixed in 6.0.10. However, our case might be different because we didn't have the RDP disconnect over SSL VPN (dropped almost everytime a user tried to RDP into a server after SSL VPN came up) problem with 6.0.6.

    Spidler
    SpidlerAuthor
    New Member
    March 13, 2020

    I spoke to an engineer this morning and they've slipped me a pre-GA copy of 6.0.10 to try out. I'll be installing it tomorrow morning, so I'll report back then as to the results.

    Bitman
    Bitman
    New Member
    March 13, 2020

    Hey Spidler,

    Found this thread while searching for a similar issue. We too are sometimes experiencing RDP freeze and disconnections at 5-10 min interval. FC connection is stable, no disconnect, ping is good. Our Fortigate model is 80E on 6.0.7.

    This is not always happening. I sometimes experience this behavior when connecting at night. Another user reported having the issue this morning, but this afternoon everything runs smoothly.

    I found this KB ( https://kb.fortinet.com/kb/documentLink.do?externalID=FD46182) which describe a similar problem, but It does not apply to our setup.

     

    I will wait for your report on your test result with 6.0.10.

      tdragon
      tdragon
      New Member
      March 28, 2020

      Hi ,

      Can u kindly explain the kindly of connectivity you have arrange for the WFH people to connect to your network.

       

      SSLVPN--->RDP(only) or SSLVPN-->into company network

       

      We have fg 300 in our location .. but  we have designed SSLVPN user to connect only to RDP PC ..

      We also divided and limited number of user per VPN user GROUP as 10.

       

      total number of RDP pc or 85 and total number of VPN users are close to 100.

       

      Our fg 300 cpu uses 4% and spike to 30%, if any configuration change is made at that time.at rest ofthe time iit is around 4%.

      where the memory usage is 65% to 69% at constant.

       

      you may face VPN disconnection  at the time of configuring vpn user and placing those config to SSL VPN setting -->Authentication/Portal Mapping area.

      BUT rest of the time the VPN will work fine.

      WHAT kindly of VPN client you have installed at you end device.

      we have installed forticlient (complete solution supporting av,vpn and application filter).

       

       

       

       

       

        bergi_flo
        bergi_flo
        New Member
        August 26, 2020

        Hi!

         

         

        I had the same issue with a Forti VM02 running FortiOS 6.2.3 code.

        The problem was a firmware bug, I am not 100% sure, but I think this problem can also happen on lower firmware versions like 6.0.5/6.0.9.

         

        I opend a ticket, and after a few log files I sent to the support, they gave me a special firmware that fixed the bug.

         

        but i think this is the faster way:

         

        Take a look at the release note of 6.0.10, it seems they fixed it with this:

         

        https://docs.fortinet.com/document/fortigate/6.0.10/fortios-release-notes/565064/resolved-issues

         

        "RDP sessions are terminated (disconnect) unexpectedly."

         

         

         

        BNDP
        BNDP
        New Member
        April 7, 2021

        We are using FG-60E with v6.0.10 build0365 (GA) still facing auto RDP reconnections issues?

        WFIT
        WFIT
        New Member
        April 12, 2021

        We have FG100E with 

        v6.0.11 build0387 (GA)

        SSL VPN connections to Windows servers (2008,2012 or 2016) have disconnections. Opened a TT but no help at all. I had to use the VPN portal instead untill there will be a real fix.

         

        BTW this happened after I move from 6.0.5

        Terms & ConditionsAccessibility statement