- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
How to connect to Local LAN using FortiClient SSL VPN
I'm able to connect to the ssl vpn, after connected I can access to my f drive but when I ping my server name I can't find my host server. Also, I cant access to http://servername:5050/Login.aspx , it shows me DNS resolve failed, but I can access to http://192.168.X.XX:5050/Login.aspx
Policy 1
Incoming Interface: lan
Outgoing Interface: virtual-wan-link
Source: all
Destination: all
Action: Accept
Service: all
Policy 2
Incoming Interface: SSL-VPN tunnel interface (ssl.root)
Outgoing Interface: lan
Source: SSL-VPN Address, Employees user group
Destination: Local-LAN
Action: Accept
Service: all
How to solve this problem? Please help T.T
FortiClient
Solved! Go to Solution.
- Labels:
-
FortiClient
-
FortiGate
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I don't think so.
You have set a public dns, while your internal server's IP is private.
You have to set DNS IP to your internal DNS server.
- « Previous
-
- 1
- 2
- Next »
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
If DNS resolution is still problematic, you can add an entry to the hosts file timeshare exit companies on your machine. Open the hosts file (located at C:\Windows\System32\drivers\etc\hosts on Windows) and add a line like: 192.168.X.XX servername.
This step is a temporary workaround. The primary solution should be to ensure proper DNS resolution.
Created on ‎01-17-2024 01:08 AM Edited on ‎01-17-2024 01:09 AM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Thanks for suggestion but I have to solve the DNS resolution problem. I wonder why when I ping ip, some able to ping but some show destination host unreachable and Request timed out. Isnt I set the destination to local lan 192.168.1.0/24, it should be able to ping all these?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi @pxiannie,
Some might not respond to ping due to host based firewalls. Are you able to ping those IPs from the FortiGate. You can run debug flow to see if the traffic is going through: https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-First-steps-to-troubleshoot-connecti...
For DNS issue, have you followed suggestions above?
Regards,

- « Previous
-
- 1
- 2
- Next »