Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
burhanafridi603
New Contributor

Created on ‎08-02-2022 02:52 AM

SSL Deep Inspection create Internet issue for Smartphones.

Hello Everyone

I am using fortigate 60F Firewall and i have enables SSL Deep packet inspection i have installed certificate on almost all devices, however , Smartphone devices giving internet access as soon as I activate any security profile such antivirus, ips etc.

I even installed Certificate on mobile devices but still an issue.

Burhan Uddin
Burhan Uddin
Labels:
5435
0 Kudos
13 REPLIES 13
burhanafridi603
New Contributor
In response to sjoshi

Created on ‎08-02-2022 09:21 PM Edited on ‎08-02-2022 10:04 PM

1) Please confirm whether you have install the deep inspection certificate and its CA cert in the smart phones.....

I have only installed Fortinet_CA_SSL certificate on all my devices as shown in the picture below.

 

2) Are you facing issue with windows PC in the same subnet?...

No PC's are working fine no issue.

 

3) Also can you share the snapshot of the error you are getting in your smartphones. Is the issue for all smartphones or only few users....

 

All smartphone users facing the same issue 

 

SSL Certficate installedSSL Certficate installedPolicyPolicypolicy 2.jpg

Burhan Uddin
Burhan Uddin
2486
0 Kudos
Markus_M
Staff
Staff
In response to burhanafridi603

Created on ‎08-04-2022 12:04 PM

Hello Burhan,

 

you can try to create a new DPI profile, not use the read only default one.

Important will be the pcap and the exact error from the client (screenshot of link, if possible and the error on screen). Could be different that what I expect (unknown CA) and depending on that better ideas can be phrased.

 

Best regards,

 

Markus

2466
0 Kudos
burhanafridi603
New Contributor
In response to Markus_M

Created on ‎08-04-2022 09:43 PM

Hello Markus

 

I checked with Custom DPI and custom security profile, but still when the phone restart it say limited internet connectivity, some apps will not work properly, and I have google it other people also have the same issue.

 

I will try upgrading the firmware to 7.0.6 and then test it.

Burhan Uddin
Burhan Uddin
2450
0 Kudos
Mangustos
New Contributor

Created on ‎11-29-2022 12:55 PM Edited on ‎12-05-2022 01:29 AM

There are a few things that could be causing this issue. It could be that the certificate is not installed correctly on the smartphones or that the FortiGate is not configured correctly for SSL deep packet inspection. If you have not already, I would recommend checking Fortigate's SSL deep packet inspection documentation to see if there are any specific settings that need to be configured. If the problem persists, I would recommend installing Motorola bug2go, which will scan your smartphone to find any bugs. In this way, you can find the problem. You can read an article about it at https://multitechverse.com/. Good luck!

2207
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.