Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Not applicable

SSH and Telnet sessions connection issues...

Hello! I have one FG-400 as my main FireWall and two FG-50A connected with ADSL. The VPN connection for each 50A are working fine but when I open a connection to any server that I have behind the FG400 the connection is drop almost immediately. Policies for VPN are at the top, ping server working fine, I change default_ttl value and still does not work. I notice this problem after upgrading to the latest Firmware (2.80,build359). Any idea or suggestion? Thanks in advanced for any help!
6 REPLIES 6
UkWizard
New Contributor

Check you dont have NAT enabled on any of the encrypt policies.
UK Based Technical Consultant FCSE v2.5 FCSE v2.8 FCNSP v3 Specialising in Systems, Apps, SAN Storage and Networks, with over 25 Yrs IT experience.
UK Based Technical Consultant FCSE v2.5 FCSE v2.8 FCNSP v3 Specialising in Systems, Apps, SAN Storage and Networks, with over 25 Yrs IT experience.
Not applicable

Hello UkWizard and thanks for your reply! I' m a little confuse since there are no way to put NAT on this policy. Is this something that I can check from the command line?
UkWizard
New Contributor

on the encrypt policies themselves you have the following options; Inbound NAT Outbound NAT make sure they are disabled.
UK Based Technical Consultant FCSE v2.5 FCSE v2.8 FCNSP v3 Specialising in Systems, Apps, SAN Storage and Networks, with over 25 Yrs IT experience.
UK Based Technical Consultant FCSE v2.5 FCSE v2.8 FCNSP v3 Specialising in Systems, Apps, SAN Storage and Networks, with over 25 Yrs IT experience.
Not applicable

Yes, those two options are off, just Allow Inbound and Allow outbound are on.
UkWizard
New Contributor

When you say " almost immediately dropped" , how long is this roughly.
UK Based Technical Consultant FCSE v2.5 FCSE v2.8 FCNSP v3 Specialising in Systems, Apps, SAN Storage and Networks, with over 25 Yrs IT experience.
UK Based Technical Consultant FCSE v2.5 FCSE v2.8 FCNSP v3 Specialising in Systems, Apps, SAN Storage and Networks, with over 25 Yrs IT experience.
Not applicable

Hi, I have the same problem. VPN-connection between 2 FGT50A are working well. But using telnet over VPN causes connection loss. I' d recognised that the timeout / connection loss - at our VPN - was every 120 seconds. I was able to watch this in the session-table in the webinterface. But I can' t find a parameter to set the timeout of 120 to higher values. At the moment working over telnet isn' t able, because of the low timeout setting :((( p.s.: I' m using Fortigate-50A 2.80,build359
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors