This article describes that if the user cannot RDP into the PC when connected with SSL VPN, but RDP when it is on the same network, and provides troubleshooting steps for this issue.
FortiGate.
diag debug disable
diag debub flow filter saddr x.x.x.x <----- IP user is getting when connected with SSL VPN.
diag debug flow filter daddr x.x.x.x <-----PC IP which user is trying to RDP in.
diag debug flow show function-name en
diag debug flow trace start 999
diag debug en
diag sniffer packet any ‘host x.x.x.x and host y.y.y.y’ 4 0 l
Or
diag sniffer packet any ‘host x.x.x.x and port 3389’ 4 0 l
Contact TAC if there is still an issue.https://support.fortinet.com/welcome/#/
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.