Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
ReneGut
New Contributor II

Created on ‎08-25-2025 06:02 PM

No bytes are received when connected to IPSEC dialup VPN with FortiOS 7.6.4 using FortiClient

Hi,

 

I'm experimenting a new weird issue with an IPSEC dialup VPN created on a FortiGate 100F with FortiOS 7.6.4. The thing is that I can reach a connection with the FortiClient v7.4.3.1790, and my connection is able to send Bytes but it's not receiving any Bytes. I've been trying several configuration using the IKEv1 and IKEv2, and unfortunately, using IKEv2 is not connecting and using IKEv1 I was able to have a connection but only is sending Bytes and not receiving. Any idea or solution will be are welcome... One more thing, I already reviewed the article ID 352403 posted by Stephen_G, about a similar situation but, my configuration of the FortiClient is the same to the configuration suggested in that article, and it's not working... Please see the snapshots below...

 

Thank you in advance for all your help...

Ashampoo_Snap_Sunday, August 24, 2025_20h49m13s750.jpg

Ashampoo_Snap_Monday, August 25, 2025_15h33m27s754.jpg

Ashampoo_Snap_Monday, August 25, 2025_15h34m2s755.jpg

ReneGut
ReneGut
Labels:
613
0 Kudos
1 Solution
MZBZ
Staff
Staff

Created on ‎08-30-2025 10:56 PM

Better to switch to IKEv2 ASAP. FortiClient 7.4.4+ will not support IKEv1 anymore.

M. B.

View solution in original post

297
0 Kudos
12 REPLIES 12
funkylicious
SuperUser
SuperUser

Created on ‎08-25-2025 09:15 PM

hi,

maybe this https://community.fortinet.com/t5/FortiGate/Technical-Tip-SSL-VPN-IPsec-VPN-is-connected-but-receive... and disabling IPv6

"jack of all trades, master of none"
"jack of all trades, master of none"
432
ReneGut
New Contributor II
In response to funkylicious

Created on ‎08-26-2025 08:23 PM

Hi,

 

Thank you so much for your time to try to help me with this issue, I tried all recommendations that I found in your link, but unfortunately none of them works, and the problem continue...

ReneGut
ReneGut
385
0 Kudos
mariusmuresan
New Contributor

Created on ‎08-29-2025 05:52 AM

Hi, you need to change IKE phase 1 and phase 2 proposal, from sha1 to sha256 (both on fortigate and forticlient), so your encryptions will be AES128-AES256-SHA256-SHA256. This will work with IKEv1. On the other hand if you want to use IKEv2 I think the best ideea is to downgrade the firmware back to 7.6.3. Also i recommand to check Auto keep alive from Fortigate (your VPN connection)-> phase 2 selector. I worked 3 days to solve this problem, but is more difficult that I thought, and in the end I did the downgrade back to 7.6.3.

326
mariusmuresan
New Contributor
In response to mariusmuresan

Created on ‎08-29-2025 05:55 AM

And also, I'm not sure if this really matter, but I used channel 5 and 14 for tests on DH group.

324
0 Kudos
ReneGut
New Contributor II
In response to mariusmuresan

Created on ‎08-29-2025 03:20 PM

Hi Mariusmuresan,

 

Thank you so much for sharing your experience with this matter, and I did as you recommended but, unfortunately, the problem persist... I appreciate your help...

ReneGut
ReneGut
269
0 Kudos
BillH_FTNT
Staff
Staff
In response to mariusmuresan

Created on ‎08-29-2025 03:23 PM

Hi @mariusmuresan what is your device ? 

 

264
0 Kudos
BillH_FTNT
Staff
Staff

Created on ‎08-29-2025 10:10 AM

Hi @ReneGut ;

I will test your case in my lab with a simple configuration. However it is a big help if you can share the related configuration to my email bhoang@fortinet.com ; Thank you

Bill

294
0 Kudos
ReneGut
New Contributor II
In response to BillH_FTNT

Created on ‎08-29-2025 03:21 PM

Thank you so much Bill, this is a great news... I will send you the information requested asap today or tomorrow...

ReneGut
ReneGut
266
0 Kudos
BillH_FTNT
Staff
Staff

Created on ‎08-29-2025 03:25 PM

Hi all,

We have reproduced the similar issue in our lab and are working with the Engineering team to find the root cause. I will update this thread with the status. Thank you.

Bill

262
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.