Skip to main content
DamianLozano
DamianLozano
New Member
August 9, 2019
Question

VPN for Windows Clients with local internet browsing

  • August 9, 2019
  • 1 reply
  • 12410 views

Hello, thanks for your help.

 

I have a previous post with the same subject but I think it is better to dont revive the old post.

I have Fortigate 60D with an old firmware: 5.2.0

Someone give me the following link, this worked for me but with FortiClient:

https://kb.fortinet.com/kb/viewContent.do?externalId=FD36253

I would like to know if there is another tutorial to create a VPN for Windows client instead of FortiClient, I didnt found anything like this on Internet

 

Thanks in advance.

Regards,

Damián

 

    1 reply

    orani
    orani
    New Member
    August 9, 2019

    I have never tried this but what about following the ipsec vpn for windows steps? Creating an IPsec VPN from network & internet settings of windows might work.

    DamianLozano
    DamianLozanoAuthor
    New Member
    August 12, 2019

    Orani, thanks for your response.

    Every time I created an IPSec VPN in fortigate, the clients allways navigate trough the remote fortigate (with the proper filter rules).

    I think I tried just enabling "Split tunnel" but it never worked

    If someone has a tutorial would be nice.

    I just noticed the following:

    - I have no IPSec template without forticlient

    - If I select "Custom VPN Tunnel (No Template)", after 2 seconds, the fortigate logout itself

     

    The "Dialup - Android (Native L2TP/IPsec)" will also work for Windows clients? 

     

    Thanks, regards,

    Damián

    sw2090
    SuperUser
    sw2090
    SuperUser
    August 12, 2019

    the FortiGate has to do Split Tunneling not the client.

    Without split tunneling ALL traffic will navigate through the fortigate since the client (no matter if forticlient or other) will change your default route.

    With split tunneling enabled and set to a group of networks on the fortigate the client will set a network route for every of those networks and leave the default route untouched.

    So internet traffic will navigate the usual way and only traffic to those networks will navigate through the fortigate.

    This is not a client isse.

    Terms & ConditionsAccessibility statement