FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
pginete
Staff
Staff
Description This article describes how to fix the inaccessible SSL-VPN bookmarks when using different SD-WAN zone.
Scope

FortiGate versions 6.4 and 7.0.

Solution

All the SSL-VPN bookmarks are inaccessible when using different SD-WAN zone as destination interface in the SSL-VPN firewall policy.

 

It shows 'SSL VPN Proxy Error' when it is accessed.

 

pginete_0-1651480581408.png

 

For permanent fixed, upgrade the firmware version of FortiGate to 6.4.9 or 7.0.2.

For workaround, change the destination interface of the SSL-VPN firewall policy to any or move the interface as a member of the default virtual-wan-link SD-WAN zone then change the destination interface of the policy to the default SD-WAN zone.

Contributors