The web page we redirect from Fortigate works fine. However, when we redirect the web page from Fortiweb, we get the error 'SSL Error(1112)-tlsv1 unrecognized name' which I shared in the attachment. I opened a case but we couldn't find a solution. Can anyone help?
Cursory internet search suggest a server receiving a ClientHello with SNI that is not recognized by the server. (~ client wants to connect to a hostname/domain that the server doesn't know / doesn't have a configuration for)
https://github.com/openssl/openssl/issues/20374
https://www.reddit.com/r/PHPhelp/comments/130qbsb/ssl_error_error0a000458ssl_routinestlsv1/
https://caddy.community/t/ssl-error-unrecognized-name-alert-when-trying-to-use-https/23900
I'd suggest taking a pcap of the offending traffic and checking if the SNI makes sense compared to what you're expecting.
| User | Count |
|---|---|
| 2276 | |
| 1236 | |
| 772 | |
| 452 | |
| 398 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.
