Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Potato
New Contributor III

Can't open the SSLVPN portal

Dear All, I have a FortiWiFi60C and has upgraded to the latest Firmware as below:

 

 

 

 

 

 

Well, then, When I type [link]https://MyWanIp or[/link] [link]https://MyLanIP[/link]

 

I can't open the SSLVPN portal and says too long to response 

 

but [link]https://MyWanIp:4444[/link] is able to access the Fortigate Management page.

 

Telnet MyWanIp 4444 is ok, but 443 is fail.

 

I am sure that the Fortigate accesses Wan normally and directly (PPPOE).

 

Also, I can have an IPSEC-VPN to access Fortigate as All tunnel mode. Please help in this case. 

 

2 REPLIES 2
ede_pfau
SuperUser
SuperUser

Hi,

 

and welcome to the forums.

Generally, I would advise against using the 'any' interface, in both the SSLVPN setup and the policy. Probably you plan to use the SSLVPN from an external network so the obvious port would be 'wan1'.

If you enable the same SSLVPN portal on both the 'wan1' and 'lan' ports, how is that supposed to work if the client's IP is assigned from the same IP pool? One interface, one portal, one IP pool, and routing will work.(This is not the root cause of the connection timeout but you'll run into this later.)

 

Then, just to exclude a port error, move the SSLVPN port to, for instance, 10443 and try to connect to "myWANIP:10443". If that does work you've got port 443 used somewhere else.

Ede Kernel panic: Aiee, killing interrupt handler!
Ede Kernel panic: Aiee, killing interrupt handler!
Potato
New Contributor III

Dear ede_pfau, Thanks for your suggestion. I have found the solution: Add the SSLVPN User group to the Firewall policy rule. Thanks.

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors