I have an issue with accessing web page by VPN SSL web mode.
When I'm using forticlient (SSL VPN) everything is OK.
Issue is that page is not openning - after I clicked on bookmark is
My architecture is:
INTERNET client with web browser -> FortiG1(Site1)<- ipsec tunel -> FortiG2(Site2) -> Server
Pages from Site1 are working by SSL VPN webmode
Pages from Site2 don't work by SSL VPN webmod, i tried few servers
But as mentioned abowe , when I use FortiClient(configured to use SSL VPN Tunel mode) everything is OK, I can open pages from both sites
Could You please advice me where I should start to check ??
Thanks, question, is any possibility to set that trafic from SSL VPN Web mode should use only IPSEC by fiber ??
You may consider to change distance or priority of the static route.
Sorry for delay.
I tried in a lite bit different way.
I created SDWAN rule on Site1 with rule
edit 9set name "SSLVPN-webmode-to_Site2"set dst "Site2_subnet"set src "77.254.x.x"set priority-members 4 -> this is Fiber
But still in logs of FGT first try by IPSec-ISP then IPSEC-Fiber
I found this article
and I have question,
I have PHY INT 3 (for WAN connection) and I have assigned there IP 77.254.x.x, below i have tunel interface (after expanding plus symbol) , and when I enter to the tunel interfce as IP i have 0.0.0.0.
Should I chnage this ?? If I chnage this I broke IPSEC for a while or other disaster :) ??
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2023 Fortinet, Inc. All Rights Reserved.