Hello,
I'm newbie here. I need some technical advise from you all. Our company is based in Singapore and just implemented SSL VPN using fortigate 90D. Our goal is to access google drive and some trade markets websites when my users were in china. As you guys know china got blocked a lot of websites. Today i have tested google drives can access once ssl vpn is connected back to Singapore but other websites is still not able to access (for example- bloomberg, facebook and others. Is there anyway to by pass china firewall to unblock all those websites? Really appreciate your advise. Thanks you. Have a nice day. :)
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
You could check if DNS if filtered. If your clients tunnel everything across the SSL VPN (including DNS) they should be able to reach any site.
Hello,
It seems you are using split tunneling.
You can force all traffic from the endpoint to come throug the ssl vpn to your unit and then go to the internet, in that case, you will manage the access, bypassing any country rules.
On windows machines, you test DNS with "nslookup somesite.com" (DOS box). Test if you can get an answer for sites that you cannot surf to.
You could check if DNS if filtered. If your clients tunnel everything across the SSL VPN (including DNS) they should be able to reach any site.
Hello,
It seems you are using split tunneling.
You can force all traffic from the endpoint to come throug the ssl vpn to your unit and then go to the internet, in that case, you will manage the access, bypassing any country rules.
Hi ede_pfau,
Thanks you for you reply. May i know how can i check if DNS was filter? Hi Recardo Tomas,
Thanks you for your reply too. I did turn off the split tunneling check box but still the same problem. Can i have another idea? Thanks you.
On windows machines, you test DNS with "nslookup somesite.com" (DOS box). Test if you can get an answer for sites that you cannot surf to.
Hi ede_pfau,
Thanks you very much for your advise. After i test nslookup and found that DNS couldn't solve.Thus i changed to Singapore public DNS address and user can able to access websites which are blocked by china isp. Thanks you very much and really appreciate.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1688 | |
1087 | |
752 | |
446 | |
227 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.