Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
jomof
New Contributor III

How to view network traffic for ssl vpn connection

Hello expert,

 

I configured a ssl vpn remote and was successful able to establish a remote session  from my laptop.

how can i view the entire logs for any attempt from my laptop to resource on the "lan" network behind the FortiGate.

I search under log and report  forward traffic unsure if I  am searching the correct place but I am not seeing any  inbound traffic.

 

I humbly request some guidance.

 

Thanks 

 

Regards

 

 

 

 

4 REPLIES 4
Toshi_Esumi
SuperUser
SuperUser

No. You wouldn't be able to see user traffic on the client machine side because it's encrypted by SSL/TLS. Only way to see/sniff the traffic is on the FGT side before encryption/after decryption.

Toshi

jomof
New Contributor III

Hello @Toshi,

 

Thank you for your prompt response is there some kind of cli command I can run to sniff the traffic  if so could you please assist.

Only way to see/sniff the traffic is on the FGT side before encryption/after decryption.

 

Thank you.

Toshi_Esumi

It depends on your FortiOS version on the FGT if you want to use GUI to sniff. But check this KB:
https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-Packet-Capture-on-FortiOS-GUI/ta-p/1...

If you're ok with CLI, it has't changed almost since the inception of FGT.
https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-Using-the-FortiOS-built-in-packet-sn...

Toshi

jomof
New Contributor III

Hello @Toshi_Esumi 

 

Thank you will take a look.

 

Regards

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors