Good day all,
Here is my setup:
Internet --> ISP Cable Modem --> Fortigate 60C --> ASUS RT-AC86U
Fortigate 60C:
WAN 1: DHCP
Internal: Manual IP 192.168.0.1
DHCP Server: IP start - end: 192.168.0.100
Firewall policy to forward port UDP 1194 to the ASUS RT-86U WAN IP (192.168.0.100) in order to connect to the RT-AC68U VPN Server with an Android Phone. It works but.....see below!
ASUS RT-AC86U:
WAN: 192.168.0.100
LAN: 192.168.1.1
DHCP Server: IP start 192.168.1.100 - end 192.168.1.114
VPN Client: ON
VPN Server: ON
Bandwidth (ISP advertises 60 down / 10 up):
Without VPN Client on RT-AC86U: 68 down / 13 up
With VPN Client on RT-AC86U: 66 down / 12 up
Like I said, everything is working as expected with only one exception. I can successfully connect the Android phone to the ASUS VPN Server...but I can't browse the web with any browser on the Android phone (same issue when connected on the VPN Server with my laptop by using a WIFI hotspot outside my LAN). I can use apps like Google Play or even Facebook Messenger with no problem at all. It is weird....It seems to be an issue with Fortigate Firewall blocking HTTP/HTTPS from Internal to WAN 1.....Am I wrong?
Any help would be much more than appreciated!
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Could be a number of things. Do you have a policy allowing Internet access? Sounds like it should be internal as the source interface and wan1 as the destination interface. Also make sure your DHCP server is assigning proper DNS server(s) and default gateway. Check the traffic logs or run a "diag sniff packet..." command to see if you can view the traffic passing through the Fortigate.
HTH
d
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1663 | |
1077 | |
752 | |
446 | |
220 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.