Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
SSL-VPN Secure Connection Failed
Hello,
I'm a novice at using FortiGate and I'm testing out Remote Access using SSL-VPN but I'm having issues when I access the Portal Site (See attachment no. 4). I am attaching the test configurations I have, I must be missing something.
Attachments:
1. SSL-VPN Settings
2. SSL-VPN Portals
3. IPv4 Policy
4. Browser Error
Appreciate your help.
I'm a novice at using FortiGate and I'm testing out Remote Access using SSL-VPN but I'm having issues when I access the Portal Site (See attachment no. 4). I am attaching the test configurations I have, I must be missing something.
Attachments:
1. SSL-VPN Settings
2. SSL-VPN Portals
3. IPv4 Policy
4. Browser Error
Appreciate your help.
16 REPLIES 16
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello,
172.20.120.123 is not a public ip address, you need a public IP address to have access to the SSL-VPN interface from outside your network.
Regards.
172.20.120.123 is not a public ip address, you need a public IP address to have access to the SSL-VPN interface from outside your network.
Regards.
Defend Your Enterprise Network With Fortigate Next Generation Firewall
Defend Your Enterprise Network With Fortigate Next Generation Firewall
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Marcos,
Thanks for your reply.
I'm using GNS3 VM to simulate , attached is my test topology, will it not work on it?
Thanks for your reply.
I'm using GNS3 VM to simulate , attached is my test topology, will it not work on it?
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Yes, you can use GNS3, I think the PC need to be connected from the 172.20.120.0 LAN to simulate a remote pc.
Regards.
------------------------------
Defend Your Enterprise Network With Fortigate Next Generation Firewall
------------------------------
Regards.
------------------------------
Defend Your Enterprise Network With Fortigate Next Generation Firewall
------------------------------
Defend Your Enterprise Network With Fortigate Next Generation Firewall
Defend Your Enterprise Network With Fortigate Next Generation Firewall
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I actually run a route add command on my PC like below
route add 172.20.120.0 mask 255.255.255.0 192.168.150.254
Basically, I am able to manage the Fortigate from my PC. But I don't understand why I get an error when I access the portal site.
route add 172.20.120.0 mask 255.255.255.0 192.168.150.254
Basically, I am able to manage the Fortigate from my PC. But I don't understand why I get an error when I access the portal site.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I think you need to allow internal traffic back to the SSL-VPN Tunnel interface.
add a policy from internal to SS-VPN interface.
add a policy from internal to SS-VPN interface.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Actually I take that back, you wont need that for web access.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
switch your browser and test again
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Yeah i tried IE, Firefox and Chrome and nothing worked.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
What URL do you use to mange the FortiGate and which one do you use to get to the SSLVPN? Assuming you are still working on it.