FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
This article describes how to fix the inaccessible SSL-VPN bookmarks when using different SD-WAN zone.
FortiGate versions 6.4 and 7.0.
All the SSL-VPN bookmarks are inaccessible when using different SD-WAN zone as destination interface in the SSL-VPN firewall policy.
It shows 'SSL VPN Proxy Error' when it is accessed.
For permanent fixed, upgrade the firmware version of FortiGate to 6.4.9 or 7.0.2.
For workaround, change the destination interface of the SSL-VPN firewall policy to any or move the interface as a member of the default virtual-wan-link SD-WAN zone then change the destination interface of the policy to the default SD-WAN zone.