| Description | This article describes a scenario when the FortiClient dialup tunnel keeps disconnecting for some users. |
| Scope | FortiOS 7.0 or higher. |
| Solution |
There might be some instances when the FortiClient dialup tunnel keeps disconnecting for some users.
To isolate the issue run the IKE debug as follows:
di vpn ike log filter rem-addr4 x.x.x.x
In the debug the tunnel will show coming up and no error will be observed. Besides the fact that FortiGate sent a couple of keep alive and after that it received an ISAKMP delete msg as shown below.
Furthermore, the IKE gateway can be seen established as shown below, the only thing that can be interesting to notice is that it is establishing the tunnel over IPV6 instead of IPV4 as shown below.
Solution:
The solution for this is to disable the IPV6 on the FortiClient network adapter on the problematic machine.
Go to Control panel -> Network and sharing center -> Change adapter settings -> Select Fortinet Virtual Ethernet Adapter.
'Right-click' on it, change the property, scroll down to find TCP/IPV6, and uncheck that as shown below.
If still facing issues after that, run the IKE debug and feel free to contact Fortinet Support: |
