Technical Tip: Using SSL-VPN web mode bookmark to access internal NAS(qnap QTS MPIVV-1) with error message.

yangw · ‎05-18-2022

Description

This article describes how to use SSL-VPN web mode bookmark to access internal NAS(qnap QTS MPIVV-1) will be redirected to SSL-VPN interface ip address.

Scope

FortiGate version 6.4.

Solution

Using SSL-VPN web mode bookmark with a private (internal) IP address to access internal NAS(qnap QTS MPIVV-1), the error message will be listed.

The ip address 60.251.161.229 is the SSL-VPN listening interface ip address.

The bookmark url is 'http://192.168.1.23:8080'.

Error msg :

//SSL VPN Proxy Error
The proxy server could not handle the request GET /proxy/2803bed2/http/60.251.161.229:8080/redirect.html?count=0.12931013396502644.
Reason: Access Denied//

The URL redirection information will be displayed when SSLVPN web mode user access the bookmark.
http/60.251.161.229:8080/redirect.html?

From the packet log the url redirection message in packets that received from the NAS.

From the browser's developer mode, the web page will be redirected to http://192.168.1.23:8080/cgi-bin/login.html.

Modified bookmark to http://192.168.1.23:8080/cgi-bin/login.html for direct access to the NAS login page then it can be displayed well.

Technical Tip: Using SSL-VPN web mode bookmark to access internal NAS(qnap QTS MPIVV-1) with error message.

You are leaving our website