Unlock Exclusive Benefits
Join Our Community Today!
Join our community and post in the forum to earn your exclusive Autumn 2024 badge! Become a member today!
LOGIN/REGISTER
CONTINUE AS A GUEST
- Forums
- Knowledge Base
- Customer Service
- Internal Article Nominations
- FortiGate
- FortiClient
- FortiAP
- FortiAnalyzer
- FortiADC
- FortiAuthenticator
- FortiBridge
- FortiCache
- FortiCarrier
- FortiCASB
- FortiConnect
- FortiConverter
- FortiCNP
- FortiDAST
- FortiDDoS
- FortiDB
- FortiDNS
- FortiDeceptor
- FortiDevSec
- FortiDirector
- FortiEDR
- FortiExtender
- FortiGate Cloud
- FortiGuard
- FortiHypervisor
- FortiInsight
- FortiIsolator
- FortiMail
- FortiManager
- FortiMonitor
- FortiNAC
- FortiNAC-F
- FortiNDR (on-premise)
- FortiNDRCloud
- FortiPAM
- FortiPhish
- FortiPortal
- FortiProxy
- FortiRecon
- FortiRecorder
- FortiSandbox
- FortiSASE
- FortiScan
- FortiSIEM
- FortiSOAR
- FortiSwitch
- FortiTester
- FortiToken
- FortiVoice
- FortiWAN
- FortiWeb
- FortiWebCloud
- Wireless Controller
- Lacework
- RMA Information and Announcements
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
- Fortinet Community
- Forums
- Support Forum
- FortiClient VPN cannot connect local network vpn s...
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
FortiClient VPN cannot connect local network vpn server without the internet
I have a problem with FortiClient VPN 7.4.0.1658 version
I need connect to the VNP server in local network.
My computer with the client do not have internet access.
When I am trying to connect I can observe warning message in FortiVPN_1.log:
fortivpn::StateMachine::HandlePreflight_EnvironmentCompliance environment does not permit VPN connections: No Internet.
In state: TunnelConnectAborted
I do not need internet to connect to the VPN, because the server is in local network.
During startup I can observe in this log:
fortivpn::INetworkAvailability_impl::Get LAN is available, Internet is not available
Is it possible to configure the client to not use the internet, but only local network to connect to the VPN server?
Solved! Go to Solution.
Labels:
- Labels:
-
FortiClient
Nominate a Forum Post for Knowledge Article Creation
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
1 Solution
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I think I found the solution :)
1. Backup the config.
2. Change
<disable_internet_check>1</disable_internet_check>
to
<disable_internet_check>0</disable_internet_check>
3. Now it works (tested on 7.2 but similar option is in 7.4 too)
6 REPLIES 6
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello @grzesieks7
What about web SSL VPN mode, did you try?
Is this a valid option for you?
BR
- Happy to help, hit like and accept the solution -
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello Ndumaj,
I didn't try SSL VPN, because I need IPSEC there. I was hoping that somebody knows how to disable internet connection checking in Forticlinet VPN. Unfortunately I have not been able to figure out how the Forticlient checks the internet connection.
I was observing the traffic and I cannot see any traffic to check the internet connection nor to connect to the VPN server.
I am sure that the problem is with Forticlient because other client works without any problems.
Best Regards,
Grzesiek
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
No one had similar problem?
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I tried to use the 7.2 version and I found in debug log:
[2024-08-27 13:36:02.3969315 UTC+01:00] [2388:3572] [FortiVPN 42 debug] fortivpn::INetworkAvailability_impl::Get LAN is available, Internet is not available
[2024-08-27 13:36:02.3970816 UTC+01:00] [2388:3572] [FortiVPN 184 debug] fortivpn::IDataManager::LoadEnvironmentalData leave
[2024-08-27 13:36:02.3970858 UTC+01:00] [2388:3572] [FortiVPN 141 debug] fortivpn::IDataManager::LoadVPNEnvironmentalData
[2024-08-27 13:36:02.3971033 UTC+01:00] [2388:4972] [FortiVPN 166 debug] fortivpn::IDataManager::SetEPCState env_before (not initialized) {"just_installed":true,"trial_mode":false,"bypass_internet_check":false,"network_state":{"lan_available":true,"internet_available":false},"is_quarantined":false,"suppress_vpn_notifications":false,"on_os_start_connect_has_priority":false,"vpn_is_running":false,"single_user_mode":false,"autoconnect_on_offnet_only":false,"autoconnect_on_config_install":false,"keep_running_max_tries":-1,"keep_running_delay":0,"power_resume_autoconnect_delay":5,"user_login_autoconnect_delay":0,"epc_state":0,"power_suspending":false}
[2024-08-27 13:36:02.3971153 UTC+01:00] [2388:4972] [FortiVPN 167 debug] fortivpn::IDataManager::SetEPCState env_after (not enabled) {"just_installed":true,"trial_mode":false,"bypass_internet_check":false,"network_state":{"lan_available":true,"internet_available":false},"is_quarantined":false,"suppress_vpn_notifications":false,"on_os_start_connect_has_priority":false,"vpn_is_running":false,"single_user_mode":false,"autoconnect_on_offnet_only":false,"autoconnect_on_config_install":false,"keep_running_max_tries":-1,"keep_running_delay":0,"power_resume_autoconnect_delay":5,"user_login_autoconnect_delay":0,"epc_state":-3,"power_suspending":false}
[2024-08-27 13:36:02.3971343 UTC+01:00] [2388:4972] [FortiVPN 170 debug] fortivpn::IDataManager::SetEPCState Global environment changed
[2024-08-27 13:36:02.3971452 UTC+01:00] [2388:4972] [FortiVPN 54 debug] fortivpn::StateMachine::AddEvent type=12 (GlobalVPNEnvironmentChanged)
It looks like there is an option allowing bypass internet check. Unfortunately I am not able to find it. I looked at all VPN config functions, keys in registry, but still no luck.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Connection is stable. Problem is default config of the forticlient. It tests the internet connection - for 99,9% usage scenarios it is fine, because you are using internet to connect to the company form home, but mine case is different
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I think I found the solution :)
1. Backup the config.
2. Change
<disable_internet_check>1</disable_internet_check>
to
<disable_internet_check>0</disable_internet_check>
3. Now it works (tested on 7.2 but similar option is in 7.4 too)
Announcements
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
Related Posts
- Forticlient login page issue 80 Views
- Windows PKI certificate does not work... 161 Views
- share FortiVPN to other devices 92 Views
- Disconnect Notification for FortiClient 7.2.4 139 Views
- Forticlient 7.2.5 not available in EMS? 125 Views
Labels
-
FortiGate
7,870 -
FortiClient
1,571 -
5.2
801 -
FortiManager
659 -
5.4
639 -
FortiAnalyzer
505 -
6.0
416 -
FortiAP
410 -
FortiSwitch
409 -
5.6
362 -
FortiClient EMS
351 -
FortiMail
296 -
6.2
251 -
FortiAuthenticator v5.5
234 -
5.0
196 -
FortiWeb
187 -
SSL-VPN
163 -
FortiNAC
153 -
IPsec
146 -
6.4
128 -
FortiGuard
124 -
FortiGateCloud
98 -
FortiSIEM
93 -
FortiCloud Products
93 -
FortiToken
84 -
SD-WAN
81 -
Customer Service
74 -
Wireless Controller
72 -
4.0MR3
64 -
FortiAuthenticator
61 -
FortiProxy
52 -
Firewall policy
51 -
FortiEDR
50 -
FortiADC
49 -
Fortivoice
47 -
FortiDNS
41 -
High Availability
40 -
FortiExtender
39 -
VLAN
39 -
FortiSandbox
38 -
FortiGate v5.4
35 -
ZTNA
35 -
FortiSwitch v6.4
33 -
DNS
33 -
LDAP
33 -
Routing
31 -
BGP
30 -
SAML
29 -
Interface
29 -
Certificate
29 -
NAT
26 -
FortiConnect
25 -
SSO
25 -
FortiWAN
24 -
Authentication
24 -
FortiGate v5.2
23 -
RADIUS
23 -
FortiConverter
22 -
VDOM
21 -
FortiLink
21 -
Virtual IP
19 -
Web profile
19 -
FortiSwitch v6.2
18 -
FortiPortal
18 -
Logging
17 -
FortiMonitor
16 -
Traffic shaping
16 -
Fortigate Cloud
15 -
FortiDDoS
15 -
Application control
15 -
FortiGate v5.0
14 -
SSL SSH inspection
14 -
FortiCASB
12 -
OSPF
12 -
FortiManager v5.0
11 -
SNMP
11 -
SSID
11 -
FortiPAM
11 -
Static route
11 -
Web application firewall profile
11 -
IP address management - IPAM
11 -
FortiRecorder
10 -
Admin
10 -
WAN optimization
10 -
4.0MR2
9 -
FortiSOAR
9 -
FortiWeb v5.0
9 -
FortiAP profile
9 -
FortiGate v4.0 MR3
8 -
FortiManager v4.0
8 -
FortiBridge
8 -
Automation
8 -
System settings
8 -
4.0
7 -
FortiAnalyzer v5.0
7 -
RMA Information and Announcements
7 -
IPS signature
7 -
Traffic shaping policy
7 -
Proxy policy
7 -
FortiCache
6 -
DNS filter
6 -
trunk
6 -
Packet capture
6 -
Security profile
6 -
Intrusion prevention
6 -
FortiCarrier
5 -
FortiTester
5 -
Users
5 -
Port policy
5 -
3.6
4 -
FortiDeceptor
4 -
FortiToken Cloud
4 -
FortiScan
4 -
FortiDirector
4 -
Antivirus profile
4 -
Traffic shaping profile
4 -
DLP sensor
4 -
Email filter profile
4 -
Fabric connector
4 -
Web rating
4 -
Fortinet Engage Partner Program
4 -
FortiDB
3 -
FortiHypervisor
3 -
Explicit proxy
3 -
Internet service database
3 -
NAC policy
3 -
DLP Dictionary
3 -
DLP profile
3 -
DoS policy
3 -
Netflow
3 -
VoIP profile
3 -
Multicast routing
3 -
FortiInsight
2 -
FortiAI
2 -
FortiNDR
2 -
Application signature
2 -
Protocol option
2 -
Replacement messages
2 -
Schedule
2 -
Service
2 -
Zone
2 -
4.0MR1
1 -
FortiManager-VM
1 -
FortiCWP
1 -
Kerberos
1 -
API
1 -
Subscription Renewal Policy
1 -
Video Filter
1 -
Authentication rule and scheme
1 -
TACACS
1 -
SDN connector
1 -
Multicast policy
1 -
Cloud Management Security
1
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2024 Fortinet, Inc. All Rights Reserved.