Skip to main content
miz65
miz65
New Member
November 21, 2021
Question

sslvpn vdom dhcp

  • November 21, 2021
  • 1 reply
  • 1479 views

hi,

 

having an issue brought up a lab.
 2 fortigate 2500e working in ha active-passive. 

version 6.0.10-FW-build0365

two vdoms x,y.

configured sslvpn separately for each vdom.

no vdom links between the vdoms.

when a sslvpn user in vdom x connects he gets an ip address from dhcp pool that is configured in sslvpn vdom y. 

  

FortiGate 

 

1 reply

Markus_M
Staff & Editor
Markus_M
Staff & Editor
November 21, 2021

Hi miz65,

 

make sure the two vdoms are not having some DHCP relay configured, one relaying to another.

The DHCP pool should not matter, because normally the pool is taken from a default configuration and ip pool object of the 10.212... range.

 

See how your client IP assignment is working, or supposed to work.

In case of DHCP you could use the dhcps debug, in case of the SSLVPN assigning it from its pool, see to run the sslvpnd debug.

Another helpful command will be

diag firewall auth list

Which shows you which users got which addresses, which memberships if any and by what server configuration (name in your config) they have been authenticated.

 

Markus

Terms & ConditionsAccessibility statement