Hi.
The staff member of a client of ours who has a 60E Fortigate with the latest 6.2 firmware, is trying to connect from his new home, which uses a Starlink connection. If we use the Starlink connection, we cannot connect at all to the Fortigate, but if we tether to a Mobile 4G connection or similar, it works fine, as does the same credentials from a Fibre connection.
TIA for any insight into what might be happening.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Are you able to ping the Fortigate interface via starlink?
Hello,
The issue with the Fortigate not working when connecting via a Starlink connection probably related to connectivity issues through your ISP.
Please attempt to ping the firewall's public interface using the Starlink ISP, then verify on the FortiGate whether you are getting traffic from the client workstation.
BR,
Rakesh
Hi,
Since you are able to connect to the Fortigate using your Mobile 4G connection, I suspect the issue to be with your Starlink. To siolate the issue, you could try to ping the firewalls interface with your Starlink ISP and see if packets are reaching the Fortigate. You could use the command:
diag sniffer packet any 'host <your Starlink Public IP and icmp" 4 0 a
and initiate the ping from your PC connected to Starlink ISP. If you don't see packets at all on the Fortigate, it will be an issue with the ISP.
Regards,
Manosh
Hi.
Did you can resolve the problem about the vpn with starlink?
thanks
regards
Hello, I'm stumbling into quite the same issue
One of my colleage lives in a remote house and now as deployed a Starlink
I've got a rule (geography) that allows only connections from our country since our company is local
She can't log to the remote computers but if I enable all countries in the rule it's a pass
How do you from which country arrives the redirected starlink ?
Hi,
From the GUI you can view from IPsec Monitor the IPsec clients and the Remote Gateway column and there you can find the remote IP of the user.
After you have the remote IP you can check with the following command,
diagnose geoip ip2country IP , and see the country that the FortiGate sees it as
Hello denji0
we watched some similar issues a few weeks ago; solved by enabling NAT traversal
This article could be helpful:
https://community.fortinet.com/t5/FortiGate/Technical-Tip-IPSec-VPN-nattraversal/ta-p/197873
regards
/ Abel
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1733 | |
1106 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.