Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
caunon
Staff
Staff

Created on ‎06-29-2022 09:03 AM Edited on ‎06-29-2022 10:36 AM By Anonymous

Article Id 216281

Technical Tip: How to add multiple dns-suffix in SSL VPN setting of FortiGate unit

Description

This article describes the procedure to add multiple dns-suffix in the SSL-VPN settings of the FortiGate unit.

 

In some situations, multiple dns-suffix needs to be added in SSL-VPN for any reason.

For example, the SSL-VPN client of IOS can not solve the name to access the internal server.
And there might be many domain names of the internal servers.

 

Scope

 

FortiGate v6.4.x.

 

Solution

 

- Adding of multiple dns-suffix in SSL VPN can be done in 3 patterns as below.

 

- It can be done via CLI commands in one of the ways.

 

CLI commands:

 

The solution to fix the issue:

 

Pattern 1:

 

# config vpn ssl settings

     set dns-suffix “test1.com test2.co.uk test3.net”

  end

 

Pattern 2:

 

# config vpn ssl settings

     set dns-suffix test1.com;test2.co.uk;test3.net

  end

 

Pattern 3:

 

# config vpn ssl settings

     set dns-suffix “test1.com; test2.co.uk; test3.net”

  end

Labels:
4112
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.