We have a home user who is getting disconnect from the VPN every 30 seconds. She has confirmed she is using the correct password. We don't think it is local network as the same issue occurs on mobile hotspot. Issue has only just started in the last 24 hours.
FortiGate Client
7.2.1.0779
The VPN log is attached ( I have started out some sensative bits like my company name and user name)
fctver=7.2.1.0779 fgtserial=FCT8001468094356 emsserial=N/A os="Microsoft Windows 11 , 64-bit (build 26100)" user="********" msg="Traffic log" sessionid=1380262705 srcname=sslvpn srcip=172.17.0.100 srcport=0 direction=outbound dstip=london-********.co dstport=443 proto=6 rcvdbyte=12895686158 sentbyte=12888050432 utmaction=passthrough utmevent=vpn threat=disconnect userinitiated=0 browsetime=0
2/18/2025 11:37:26 AM info sslvpn date=2025-02-18 time=11:37:25 logver=1 id=96600 type=securityevent subtype=sslvpn eventtype=status level=info uid=2E74E029E55740678B073B0C94A54E6D devid=FCT8001468094356 hostname=LAPTOP-DE538P41 pcdomain=N/A deviceip=172.20.10.2 devicemac=74-4c-a1-9f-db-e1 site=N/A fctver=7.2.1.0779 fgtserial=FCT8001468094356 emsserial=N/A os="Microsoft Windows 11 , 64-bit (build 26100)" user="***********" msg="SSLVPN tunnel status" vpnstate=disconnected vpntunnel="**** VPN"
2/18/2025 11:38:31 AM info sslvpn FortiSslvpn: 4124: fortissl_connect: device=ftsvnic
2/18/2025 11:38:36 AM info system date=2025-02-18 time=11:38:35 logver=1 id=96900 type=traffic subtype=system eventtype=traffic level=info uid=2E74E029E55740678B073B0C94A54E6D devid=FCT8001468094356 hostname=LAPTOP-DE538P41 pcdomain=N/A deviceip=192.168.1.91 devicemac=74-4c-a1-9f-db-e1 site=N/A fctver=7.2.1.0779 fgtserial=FCT8001468094356 emsserial=N/A os="Microsoft Windows 11 , 64-bit (build 26100)" user="**********" msg="Traffic log" sessionid=4227372303 srcname=sslvpn srcip=172.17.0.100 srcport=0 direction=outbound dstip=london******** dstport=443 proto=6 rcvdbyte=17179869184 sentbyte=17179873985 utmaction=passthrough utmevent=vpn threat=connect userinitiated=0 browsetime=0
Do I need access to the FortiGate CLI: to run the debug commands? (As I don't currently have access but I can ask for it)
diagnose debug disable
diagnose debug reset
diagnose debug application sslvpn -1
diagnose debug console timestamp enable
diagnose debug enable
Failure to connect via SSL VPN with '... - Fortinet Community
So know one can help? ??
FCT 7.2.1 is not mature and has many known issues.
First thing I'd do is to update FCT to 7.2.8.
In case the issue persists then you may try 7.4.2.
User | Count |
---|---|
2549 | |
1356 | |
795 | |
646 | |
455 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.