- Forums
- Knowledge Base
- Customer Service
- FortiGate
- FortiClient
- FortiAP
- FortiAnalyzer
- FortiADC
- FortiAuthenticator
- FortiBridge
- FortiCache
- FortiCarrier
- FortiCASB
- FortiConnect
- FortiConverter
- FortiCNP
- FortiDAST
- FortiDDoS
- FortiDB
- FortiDNS
- FortiDeceptor
- FortiDevSec
- FortiDirector
- FortiEDR
- FortiExtender
- FortiGate Cloud
- FortiGuard
- FortiHypervisor
- FortiInsight
- FortiIsolator
- FortiMail
- FortiManager
- FortiMonitor
- FortiNAC
- FortiNAC-F
- FortiNDR (on-premise)
- FortiNDRCloud
- FortiPAM
- FortiPortal
- FortiProxy
- FortiRecon
- FortiRecorder
- FortiSandbox
- FortiSASE
- FortiScan
- FortiSIEM
- FortiSOAR
- FortiSwitch
- FortiTester
- FortiToken
- FortiVoice
- FortiWAN
- FortiWeb
- Wireless Controller
- RMA Information and Announcements
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
- Fortinet Community
- Forums
- Support Forum
- FortiClient SSLVPN Windows 11 routes problem
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
FortiClient SSLVPN Windows 11 routes problem
Hi All,
since some weeks we are getting connection problems using FortiClient SSLVPN on Windows 11 computers. Once the issue appears on a client there is no workaround applicable, simply stops working forever, not all the W11 PCs are affected (for now).
The client stops injecting the routes to the system, only the firewall public IP related route is added.
We believe the issue comes from the Windows endpoint and not from the Fortigate configuration.
Unfortunately there is no way for us to determine if the issue is related a windows update package.
We tried several release and combinations of the FortiClient SSLVPN (FortiSSLVPNclient.exe) and of the FortiClient VPN on several Fortigates without success. No manual or tool based removal or client reinstall solved the issue.
FortiClient VPN continues to work correctly.
The client debug log:
09/09/2022 12:16:58 info sslvpn date=2022-09-09 time=12:16:57 logver=1 id=96600 type=securityevent subtype=sslvpn eventtype=status level=info uid=ACEA487EC2714E9E905C532EE8FFFF devid=FCT8000000000000 hostname=PCAAA03 pcdomain=domain.com deviceip=10.7.7.176 devicemac=c8-34-8e-15-ae-00 site=N/A fctver=7.0.7.0345 fgtserial=FCT8000000000000 emsserial=N/A os="Microsoft Windows 11 Enterprise Edition, 64-bit (build 22000)" user=usr@domain msg="SSLVPN tunnel status" vpnstate=connected
09/09/2022 12:16:58 info system date=2022-09-09 time=12:16:57 logver=1 id=96900 type=traffic subtype=system eventtype=traffic level=info uid=ACEA487EC2714E9E905C532EE8FFFF devid=FCT8000000000000 hostname=PCAAA03 pcdomain=domain.com deviceip=10.7.7.176 devicemac=c8-34-8e-15-ae-00 site=N/A fctver=7.0.7.0345 fgtserial=FCT8000000000000 emsserial=N/A os="Microsoft Windows 11 Enterprise Edition, 64-bit (build 22000)" user=usr@domain msg="Traffic log" sessionid=305070737 srcname=sslvpn srcport=0 direction=outbound dstip=vpn.edilgroup.ch dstport=443 proto=6 rcvdbyte=25769803804 sentbyte=30064773111 utmaction=passthrough utmevent=vpn threat=connect userinitiated=0 browsetime=0
09/09/2022 12:17:16 info system date=2022-09-09 time=12:17:15 logver=1 id=96823 type=systemevent subtype=system eventtype=status level=info uid=ACEA487EC2714E9E905C532EE8FFFF devid=FCT8000000000000 hostname=PCAAA03 pcdomain=domain.com deviceip=10.7.7.176 devicemac=c8-34-8e-15-ae-00 site=N/A fctver=7.0.7.0345 fgtserial=FCT8000000000000 emsserial=N/A os="Microsoft Windows 11 Enterprise Edition, 64-bit (build 22000)" user=usr@domain msg="Checking for updates"
09/09/2022 12:17:16 info system date=2022-09-09 time=12:17:15 logver=1 id=96813 type=systemevent subtype=system eventtype=status level=info uid=ACEA487EC2714E9E905C532EE8FFFF devid=FCT8000000000000 hostname=PCAAA03 pcdomain=domain.com deviceip=10.7.7.176 devicemac=c8-34-8e-15-ae-00 site=N/A fctver=7.0.7.0345 fgtserial=FCT8000000000000 emsserial=N/A os="Microsoft Windows 11 Enterprise Edition, 64-bit (build 22000)" user=usr@domain msg="Software updates are disabled"
09/09/2022 12:17:16 debug update Update task is called with dwSession=-1
09/09/2022 12:17:16 debug update fctupdate.fortinet.net
09/09/2022 12:17:16 debug update start_update_thread() called
09/09/2022 12:17:16 debug update Impersonated=0
09/09/2022 12:17:16 debug update update started...
09/09/2022 12:17:16 debug update update done
09/09/2022 12:17:16 debug update update thread exit
09/09/2022 12:17:16 debug update Network connection problem.
Someone out there with the same issue?
Regards.
Stefano
Labels:
- Labels:
-
FortiClient
- « Previous
-
- 1
- 2
- Next »
12 REPLIES 12
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi,
after an upgrade, we are facing the same error using FortiClient v 7.0.8 and FortinetSSLVPN v.7.0.8.
The connection is established but not traffic is routed through the tunnel. The network adapter also does not get an IPv4 IP.
Is there an update on that?
That would help us a lot since we are connecting to many customers via FortiClient over CLI (using our PAM system).
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I'm new to this forum and I stumbled upon this thread about the FortiClient SSL VPN Windows 11 routes problem. It's unfortunate to hear that some Windows 11 PCs are experiencing connection problems with FortiClient SSLVPN, and that there's no workaround available once the issue appears. Have you tried checking for any recent Windows updates that may have caused the issue? It might be worth a shot to roll back any recent updates to see if it makes a difference. On a different note, I wanted to mention that if anyone is looking to get a Windows 10 key, there are some discussions about it on Reddit under the subreddit "reddit windows keys". I hope this helps anyone who might be looking for a key.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
facing the same issues on all pc's in the office.
my pc is
windows 11 pro 22h2 build 22621.1413
forticlient 7.2.0.0690
forticlient tools 7.2.0.0690 (FortiSSLVPNclient.exe)
it's been like that for a few months now.. really hope it will be solved because we use it with RDM like 100 times a day and now its worthless.
- « Previous
-
- 1
- 2
- Next »
Related Posts
- Windows Deployment Services not working in... 42 Views
- Disable forticlient on startup 51 Views
- FortiOS 7.2.4 IPSec split-tunnel breaks local... 180 Views
- FortiClient Azure SSO VPN issues 87 Views
- Fortiproxy BSOD Netio.sys 138 Views
Labels
-
FortiGate
6,490 -
FortiClient
1,294 -
5.2
801 -
5.4
639 -
FortiManager
563 -
6.0
416 -
FortiAnalyzer
413 -
5.6
362 -
FortiSwitch
331 -
FortiAP
331 -
FortiClient EMS
260 -
6.2
251 -
FortiMail
239 -
FortiAuthenticator v5.5
234 -
5.0
196 -
FortiWeb
149 -
6.4
128 -
FortiNAC
104 -
FortiGuard
102 -
FortiGateCloud
87 -
FortiSIEM
86 -
FortiCloud Products
82 -
IPsec
70 -
FortiToken
69 -
Customer Service
69 -
4.0MR3
64 -
Wireless Controller
58 -
SSL-VPN
57 -
FortiProxy
44 -
FortiADC
42 -
Fortivoice
41 -
FortiEDR
39 -
FortiGate v5.4
34 -
FortiDNS
34 -
FortiExtender
31 -
FortiSandbox
31 -
FortiSwitch v6.4
28 -
FortiConnect
23 -
SD-WAN
23 -
FortiWAN
22 -
Firewall policy
22 -
FortiConverter
21 -
High Availability
20 -
VLAN
18 -
FortiPortal
18 -
ZTNA
16 -
FortiSwitch v6.2
16 -
FortiGate v5.2
16 -
FortiMonitor
14 -
Certificate
14 -
DNS
13 -
FortiDDoS
13 -
SAML
12 -
BGP
12 -
Routing
12 -
FortiCASB
12 -
Interface
11 -
Logging
11 -
FortiGate v5.0
10 -
FortiRecorder
10 -
VDOM
10 -
FortiWeb v5.0
9 -
LDAP
9 -
FortiManager v5.0
9 -
4.0MR2
9 -
RADIUS
8 -
Traffic shaping
8 -
Virtual IP
8 -
FortiAuthenticator
8 -
RMA Information and Announcements
7 -
FortiSOAR
7 -
fortilink
7 -
FortiAnalyzer v5.0
7 -
NAT
7 -
FortiGate v4.0 MR3
7 -
Admin
7 -
4.0
7 -
SSID
6 -
SSL SSH inspection
6 -
Authentication
6 -
Fortigate Cloud
6 -
IP address management - IPAM
6 -
Security profile
5 -
Traffic shaping policy
5 -
FortiBridge
5 -
SNMP
5 -
SSO
5 -
Application control
5 -
FortiManager v4.0
5 -
Static route
5 -
FortiDirector
4 -
WAN optimization
4 -
Web application firewall profile
4 -
DNS Filter
4 -
FortiTester
4 -
FortiCarrier
4 -
FortiCache
4 -
OSPF
4 -
3.6
4 -
FortiScan
4 -
Proxy policy
4 -
IPS signature
3 -
packet capture
3 -
FortiToken Cloud
3 -
Intrusion prevention
3 -
Automation
3 -
DoS policy
3 -
Port policy
3 -
FortiDB
3 -
FortiDeceptor
2 -
FortiInsight
2 -
VoIP profile
2 -
Antivirus profile
2 -
Web profile
2 -
Traffic shaping profile
2 -
FortiAP profile
2 -
FortiAI
2 -
FortiHypervisor
2 -
Netflow
2 -
Fortinet Engage Partner Program
2 -
trunk
2 -
SDN connector
1 -
4.0MR1
1 -
NAC policy
1 -
Users
1 -
Subscription Renewal Policy
1 -
FortiCWP
1 -
FortiNDR
1 -
Web rating
1 -
FortiPAM
1 -
Application signature
1 -
Multicast routing
1 -
Authentication rule and scheme
1 -
Zone
1 -
FortiManager-VM
1 -
Internet Service Database
1 -
System settings
1 -
Explicit proxy
1 -
TACACS
1
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2024 Fortinet, Inc. All Rights Reserved.