Description |
SSL VPN connections can be blocked by the FortiGate for different reasons depending on config and restrictions. This article describes recommendations on how to resolve cases where the SSL VPN connection is being attempted but gets blocked by the local-in policy even though the SSL VPN setup is configured and enabled. In this scenario, the FortiGate is supposed to open the port that is configured for the SSL VPN: either the default 443 or the port that gets defined on the SSL VPN settings by the admin. |
Scope | FortiGate, SSL VPN. |
Solution |
Running debug flow will also show that the SSL VPN connection is dropped by iprope check (local-in-policy). |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.