Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
FortiMax_it
Contributor

Created on ‎11-04-2022 10:02 AM

Problem VPN SSL WEB after upgrade to 7.0.8

Hi,
after updating a Fortigate 60E from version 7.0.7 to version 7.0.8 the RDP via SSL WEB VPN no longer works with any PC, the error "Connection closed!" always appears. If I perform a NAT of the port 3389 from the WAN to the LAN I enter the PC correctly.
I have changed all the possible parameters but I cannot log in, whether I enter my credentials in the bookmark or enter them by hand.
I have already tried to follow this KB but nothing, error: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Unable-to-take-RDP-of-machines-via-SSL-VPN...

Has anyone had the same problem?

Labels:
4032
0 Kudos
1 Solution
FortiMax_it
Contributor

Created on ‎12-22-2022 02:31 AM

@jbro  @jnielsen  @useribs problem resolved by Fortinet.

To resolve insert this string in the VPN: "set load-balancing-info NULL"

FortiMax_it_0-1671704993801.png

I hope it is set by default in new firmware.

View solution in original post

3563
0 Kudos
16 REPLIES 16
Phoenix_Woody
New Contributor
In response to jbro

Created on ‎07-18-2023 02:53 PM

jbro - did you ever find a solution?  We upgraded to 7.0.12 and are having the same issue.

482
0 Kudos
FortiMax_it
Contributor

Created on ‎12-22-2022 02:31 AM

@jbro  @jnielsen  @useribs problem resolved by Fortinet.

To resolve insert this string in the VPN: "set load-balancing-info NULL"

FortiMax_it_0-1671704993801.png

I hope it is set by default in new firmware.

3564
0 Kudos
jbro
New Contributor
In response to FortiMax_it

Created on ‎12-22-2022 08:28 AM

FortiMax - 

 

Thank you so much for your reply. 

 

Unfortunately, no joy for us using that fix. Appreciate the reply though as we are out of ideas here. Packet sniffing our RDP gateway server and we don't see any traffic trying to traverse from the Fortinet so it does seem like it's just instaclosing the connection on that end. Packet sniffs of other servers in that same subnet show normal traffic traversing and doing a config compare between firmware upgrades shows nothing of note changed. 

 

Will continue to update if we figure this out. Thanks for all your help.

 

Untitled.png

1185
0 Kudos
jbro
New Contributor
In response to jbro

Created on ‎12-22-2022 09:45 AM

So - an update - believe it or not this did actually help us ... but in a weird workaround kind of way.

 

First, the load-balancing-info change did make a difference. However, it doesn't resolve the issue, but for whatever reason, if you pass blank or incorrect credentials on the /sslvpn/frdsviewer.html page you can get to the credentials page of our RDP Gateway server which will allow users to at least work for now.

 

Such a strange, strange problem.

 

Untitled.png

1180
0 Kudos
Fikusir
New Contributor II

Created on ‎12-22-2022 04:29 AM

I have same issue and "set load-balancing-info NULL" doesnt help!

IT Specialist
1194
0 Kudos
Phoenix_Woody
New Contributor

Created on ‎07-18-2023 02:54 PM

Hey there FortiMax_it - did you ever get a solution?  I am having the same issue on 7.0.12.

479
0 Kudos
kt000791
New Contributor
In response to Phoenix_Woody

Created on ‎09-06-2023 01:12 PM

We're having the samem issue after upgrading to 7.0.12.  I have a ticket open with support.  We'll see......

 

200
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.​

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2023 Fortinet, Inc. All Rights Reserved.