Forticlient VPN 0 bytes received

lucas3 · ‎07-29-2024

I have 2 VPNs configured in my forticlient VPN, one of those works fine but the other after it connects I can't acess any server in my network.

I checked that it shows that Received bytes are constantly at 0.

I was using an older version of the client for years until it stopped working for this 2nd VPN, then I updated it to version 7.4.0.1658, but the problem continued.

Can anyone help me understand what is the problem?

Captura de tela 2024-07-29 104223.png

jelisjack4 · ‎07-29-2024

Since updating didn’t solve the issue, you might want to check the VPN configuration settings or A Detailed Guide firewall rules. It could be a problem with the network or VPN profile settings.

View solution in original post

SonaMuvv · ‎07-29-2024

Hello,

Check the VPN setting on the Fortigate. Make sure that the user belongs to the correct group and that group has correct matching policies to allow traffic.

-Also once connected to vpn, try running a continuous ping to any server in your network.

-and then on Fortigate run sniffer

diag sniffer packet any 'host x.x.x.x and host y.y.y.y' 4 0 l

x.x.x.x --> ip after connecting to vpn

y.y.y.y --> ip address of the server in your network

https://community.fortinet.com/t5/Support-Forum/FortiClient-VPN-bytes-received-0/m-p/294604

mle2802 · ‎07-29-2024

Hi @lucas3,

Can you please try to generate some traffic such as ping internal gateway and run the following command on FortiGate to see if traffic is generated:

diag debug reset
diag debug flow filter addr X.X.X.X (VPN IP)
diag debug flow filter proto 1
diag debug flow show func ena
diag debug flow show ip ena
diag debug flow trace start 999
diag debug ena

samandeep · ‎07-29-2024

Hello @lucas3 ,

It appears that incoming/received traffic may be dropped at some point, potentially on the FortiGate side. Running the commands provided by the previous engineer in the comments should give you a better understanding of the issue.

- Checking the FortiGate's forward logs, filtering by SRC IP (FortiClient assigned IP), to see if the traffic is being 'denied' or 'allowed'.
- Reviewing the routing tables on both the FortiGate and FortiClient's PC, specifically looking for the VPN assigned IP, to ensure proper routing configuration.

Also, please check the FortiClient device's routing table by running the command 'route print', which should show the outgoing traffic as normal.

Additionally, could you confirm whether this user is assigned to a split tunnel or full tunnel SSLVPN portal?

This information will be helpful in further troubleshooting.

Thank you,

Amandeep

lucas3 · ‎07-29-2024

thank you for the help. I'll ask the network team to help me with those tests and I'll update it here.

jelisjack4 · ‎07-29-2024

Since updating didn’t solve the issue, you might want to check the VPN configuration settings or A Detailed Guide firewall rules. It could be a problem with the network or VPN profile settings.

lucas3 · ‎08-12-2024

Sorry for the delay, finaly got an anwser. The problem was that my permission was changed, and after they corrected it my vpn started working fine. thank you all for the help.

Forticlient VPN 0 bytes received

Nominate a Forum Post for Knowledge Article Creation

You are leaving our website