Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
afornaris
Staff
Staff

Created on ‎01-05-2018 02:18 PM Edited on ‎03-03-2025 12:31 AM By Moderator

Article Id 198248

Technical Tip: Configuring FortiGate as a PPTP VPN client

Description

 
This article describes that even though on most PPTP VPN configurations, the FortiGate typically acts as a DialUp server; certain environments may require the firewall to act as a client instead.
 
Scope
 
FortiGate.


Solution

 

Prerequisites:
  • The FortiGate unit must be operating in NAT mode.
  • It must have a static public IP address.
  • FortiGate is not running High Availability.

PPTP client must be enabled on an internet-facing physical interface:
 
config sys int
    edit wan1
        set pptp-client enable
        set pptp-user user-test
        set pptp-pass *******
        set pptp-auth-type auto
        set pptp-server-ip 65.x.x.x.
        set l2forward enable
end
 
To troubleshoot PPTP VPN tunnel connectivity : 
 
To enable the Debug: 
 
diagnose debug reset
diagnose debug application pptp -1
diagnose debug enable
 

To disable the Debug: 

 
diagnose debug application pptp 0
diagnose debug disable
diagnose debug reset

 

Related article: 

Technical Tip : Troubleshooting PPTP VPN users experiencing disconnections on the FortiGate

Labels:
10881
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.