Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
r_olejnik
New Contributor

Lost internet connection when connecting SSL VPN via FortiClient

Hello,

I have a problem with FortiClient (7.0.5.0238). I lost internet connection when connecting SSL VPN via FortiClient. I found this article: https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-Lost-internet-connection-when-connec... 
but this solution is not working because: "After connecting to the VPN, do another 'route print' command. Note that, in the results displayed, the 'gateway' IP for the '0.0.0.0' entry has changed." - NOT, the gateway is still the same for both adresses and deleting route 0.0.0.0 is useless. Do you have any other ideas how to solve this problem?

1 Solution
dfish85
New Contributor II

Do you happen to have RSAT tools installed on one of those Windows 11 notebooks?  I've seen similar behavior using split tunnels where it doesn't add the split tunnel routes.

 

https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-FortiClient-user-cannot-access-inter...

 

 

 

 

View solution in original post

5 REPLIES 5
Mrinmoy
Staff
Staff

From your description seems like you were using a split tunnel which turned into a full tunnel and there is no policy in FortiGate for the internet (SSL--->WAN)

Please check the split tunnel under the SSL VPN portal

the following article as a reference.

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enabling-split-tunnel-feature-for-SSL-VPN/...

Mrinmoy Purkayastha
r_olejnik
New Contributor

Hi @Mrinmoy 

 

unfortunately it's not the problem here. BUT I discovered something that may help.

I took the second notebook, connected it to the same Wi-Fi and Forticlient works. Look the results of route print on Notebook #2 :
Multimedia (2).jfif

And this is result of route print on my Notebook#1:
Multimedia (3).jfif

 

As you can see there is a missing address 0.0.0.0 with VPN gateway. So something is blocking it on my target Notebook#1. Both computers have the same hardware and software installed, I mean the same antivirus (Eset), Windows 11 23H2, domain etc. Any ideas?

dfish85
New Contributor II

Do you happen to have RSAT tools installed on one of those Windows 11 notebooks?  I've seen similar behavior using split tunnels where it doesn't add the split tunnel routes.

 

https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-FortiClient-user-cannot-access-inter...

 

 

 

 

r_olejnik

Big thanks @dfish85 your solution is working for me :) Uninstalling the KB2693643 solved my problem!

r_olejnik
New Contributor

ok, so the problem is back because I need this update (KB2693643) to work because I need to manage my Active Directory. So now I have a two options:
1. Working at home without access to AD
2. Working at office with access to AD

But I need option number 3:
3. Working at home with access to AD

Is it possible? Do you working about some fix or should I wait for fix from Microsoft?

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors