Hi,
I am using SSL VPN connection with split tunneling desactivated. I also use a WAN LLB interface.
My pb is that i can access to the local network, but i cannot access to Internet. So, i need to create an firewull rule with ssl.root in incomming interface and my WAN LLB link in outgoing interface. But in the outgoing interface list, i cannot see my LLB link ?
Can you please help me to understant why ?
Thank you.
David.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
WAN LLB isn't a term anymore in newer FortiOS versions, which one are you using?
it is is a newer 5.6+ you are probably looking for the sdwan interface.
if not then adding a screenshot might help us understand and point out what you want.
Thank you for your reply,
i know that LLB is not used anymore and was replaced by SDWan. And my problem is not with that feature (who works well). I just wanted to know why i cannot select WAN interface in my policy (ssl.root to WAN) to allow internet access from SSL connections to the office internet access.
Do you have an idea ?
(the firmware migration is planned)
my idea is that because WAN is a part of the LLB / SD-WAN interface, making it impossible to select part of that interface.
a screenshot of your available interfaces would help a lot with pointing it out.
Yes, the WAN interface is member of LLB link. But does it mean that i cannot set a policy to allow traffic from ssl.root interface to remote WAN ?
You can find below 2 screenshots of the available interfaces. If i select Internal, i can choose LLB for outgoing interface, but if i choose ssl.root, it disappears.
[image]https://forum.fortinet.com/[/image][image]https://forum.fortinet.com/[/image]
ok, like that, to me that feels like a bug, or some older default behaviour for LLB.
this older questions says it is an issue in 5.4 which is solved in 5.6
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1633 | |
1063 | |
751 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.