Fortinet tunnel is showing inactive state

JoaquimdeSousa · ‎01-09-2025

Hello All,

I have this issue. FortiGate 40F (v6.4.15 build2095)

Reproduction : I use the GUI not the CLI.

1. I created a vpn user

2. I assigned this user to a vpn group

3. I used th VPN wizard to create an Dialup FortiClient (Windows, Mac OS, Android) :
-> https://docs.fortinet.com/document/fortigate/6.4.15/administration-guide/785501/forticlient-as-dialu...

4. In Firewall & Objects
-> Addresses :
-> Created automatically -> vpn1_range = 192.168.1.1-192.168.1.254
-> Created automatically -> vpn1_split = members = lan
-> Firewall Policy :
-> Created automatically -> vpn_vpn1_remote_0

-> The VPN was created, but shows INACTIVE.

I really don't understand. Can some help, please ?

Kind Regards,
Jo

dingjerry_FTNT · ‎01-13-2025

And if possible, on your client, run WireShark to capture traffic on ports 500 or 4500.

Regards,

Jerry

View solution in original post

JoaquimdeSousa · ‎01-20-2025

Hello @dingjerry_FTNT

Sorry for the delay. It WORKS, :collision::collision::collision:

First Thanks you so much for yours precious advices.

Yes, I use Windows FortiClient
The Windows FireWall is ON
Windows Defender On, no other anti-virus.

After capturing packets with WireShark, the problem was due to PORT 4500 which was closed.

I had to ask my ISP to open port 4500 UDP and now it works fine.

Kind Regards,
Jo :grinning_face:

dingjerry_FTNT · ‎01-20-2025

Hi @JoaquimdeSousa ,

I'm so glad to hear that it works for you now.

Regards,

Jerry

Fortinet tunnel is showing inactive state

Nominate a Forum Post for Knowledge Article Creation

You are leaving our website