SSLVPN using external DHCP server

Forum|Forum|10 years ago
February 8, 2016
1 reply
22370 views

Hi,

I'm trying to get my external DHCP to assign IP-addresses to my SSLVPN clients. According to the SSLVPN documentation you should configure DHCP-relay on the ssl.root interface via CLI. To this pont there are no problems.

In the SSLVPN settings you should specify a Address Range for the SSLVPN and you cannot specify anything else than "Automatically assign addresses" or "Specify custom IP ranges". In the portal settings, I also need to specify "Source IP Pools".

What should I specify there?

I don't want the Fortigate to assign the addresses...

Any ideas?

stelac

New Member

See http://docs.fortinet.com/d/fortigate-ssl-vpn-3 page 17.

We're in the progress of implementing it. I just do not know it "Source IP Polls" will continue to work for the portals.

Let me know....

NilsAuthor

New Member

stelac wrote:
See http://docs.fortinet.com/d/fortigate-ssl-vpn-3 page 17.

We're in the progress of implementing it. I just do not know it "Source IP Polls" will continue to work for the portals.

Let me know....

Hi,

I've seen the documentation.

The problem is that you cannot remove the "Source IP Pools" in the portal, which means that the Fortigate will still act as DHCP server for the VPN users.

I'm running version 5.2.6

stelac

New Member

This is more confusing than a thought!!!!

config system interface

edit ssl.root

[LEFT] set dhcp-relay-service [enable|disable][/LEFT]

set dhcp-relay-ip

next

end

To relay the request to the DHCP server, the relay has to indicate what is the subnet. Does it use the "Source IP Pools" ?????

I opened a ticket with the support... I will update you.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded