Hi
I am observing an issue as DNS entry stuck / not refreshed to default for local network adaptor while disconnects the FortiClient IPSec VPN. Following URL is found over the internet
FortiClient DNS gets stuck : r/fortinet
Resulting, if the user connects another network later, it connects but unable to surfing internet due to wrong DNS entries
It is being observed with 10% users only with following firmware combination:
FortiGate Firmware Version 7.4.5 build 2702 (Mature)
FortiClient Firmware Version 6.0.9.0277
Regards,
FAhmad
Are you pushing DNS entries from the FortiGate? Why such an ancient version of FortiClient????
Yes, i am pushing one DNS entry from FortiGate. Yes, looking forward to upgrade with 7.4.1
I wouldn't spend too much time troubleshooting until you have upgraded the client.
Yes, I am on it and will revert on this thread as upgraded
Hi,
Can you collect ike debug that will show what dns FGT is pushing to the client
Yes, I am pushing the DNS entry which is being show on client as well. Entry is correct and it works fine however when IPSEC VPN disconnects then both entries (one assigned from FGT & one assigned from local internet medium) didn't remove from local interface card
 
					
				
				
			
		
| User | Count | 
|---|---|
| 2678 | |
| 1412 | |
| 810 | |
| 704 | |
| 455 | 
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.