Fortinet Community

romgo · ‎04-27-2021

Hello,

WE are currently have a working vpnssl setup, using forticlient 6.4.3 and fortios 6.2.7 with IPV4.

We want to deploy IPV6 for our vpn ssl user, because French ISP deployed IPV6 for customers. In some cases sharing 4G connection prevent user to connect to VPN SSL, in this case they need to disable IPV6.

Our ISP provided an IPV6 block. I configured the WAN interface and connectivity is OK.

FYI internal network is IPV4 only network.

I wanted to provide users a native IPV6 connection to vpn ssl, but keeping IPV4 in the tunnel. Our tests show that is not possible, when an IPV6 user connect, they get an IPV6 in the tunnel instead of IPV4.

If this setup is not supported, how can I deploy vpn ssl with ipv6 and make users able to reach IPV4 internal network ?

Thank you !

ceba · ‎06-14-2021

i have almost the same issue... Fortinet Support told me i should setup https://docs.fortinet.com/document/fortigate/7.0.0/new-features/766455/dual-stack-ipv4-and-ipv6-supp... but this is 7.0.0 and my fortigate 50E are stuck on 6.2.x

annoying..

emnoc · ‎06-14-2021

Yeah you need to enable that dual stack mode. This was a NFR that has been put in many many years ago and it seems like FTNT finally got around with doing it ;)

Ken Felix

PCNSE

NSE

StrongSwan

Fortinet Community

Fortinet VPN SSL IPV6/IPV4