Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Not applicable

Created on ‎01-11-2010 01:11 PM

SSL VPN / JAVA web VPN

I have a SSL VPN set up to allow remote users access from the web. Users log into the fortigate open a RDP bookmark to gain access to the network. The problem I am having is their connection is randomly dropping. Any suggestion on what I can do to stop the RDP session from dropping? The SSL connection does not drop just their JAVA. Thanks Don
10200
0 Kudos
12 REPLIES 12
rwpatterson
Valued Contributor III

Created on ‎01-11-2010 02:09 PM

Welcome to the forums. There have been a number of complaints regarding dropping RDP sessions. What platform and firmware level are we working with?

Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com

Bob - self proclaimed posting junkie!See my Fortigate related scripts at: http://fortigate.camerabob.com
2720
0 Kudos
Not applicable

Created on ‎01-12-2010 05:03 AM

we are running 3.00-b0750(MR7 Patch 7) on a Fortigate-200A Don
2720
0 Kudos
Not applicable

Created on ‎01-17-2010 12:50 PM

I have also experienced issues with Java RDP session. All I get is: " Connection Terminated Internal Protocol Error" I' m using 4.1... and, IE7 or IE8 and the latest Java version. Any ideas?
2741
0 Kudos
Hermod
New Contributor

Created on ‎02-10-2010 11:31 PM

Hello I have the same problem as described by dsmmh in the first post. Users get disconnected alot and have to reconnect. It seems like the java RDP client is not that good? Have anyone found a solution for the problem. Is there a better RDP client version in the latest FortiOS v4.0 release?? Thanks :)
2741
0 Kudos
nelis
New Contributor

Created on ‎03-28-2010 04:37 PM

I am having this same exact issue. Connect, runs fine and then the client just closes randomly. In most cases, users cannot just click the bookmark to start the client again. They have to log out completely and re-login.
- Nelis out
- Nelis out
2741
0 Kudos
snowman386
New Contributor III

Created on ‎03-29-2010 08:24 AM

we replaced all our sonicwall' s with fortinets and this is the only major complaint we have. The sonicwall sslvpn portal was much better at rdp. Sure it would disconnect sometimes too but nowhere the amount of this java rdp client. What makes it a lot worse is the lack of sso. Sure you can put the -u and -p switches but most of our users are not very technical and dont understand how to do that; therefore it takes much longer for them to sign back in once they get disconnected. I was told by support that version 4.2 is supposed to have much easier sso setup and the -f switch will actually work for full screen mode.
2741
0 Kudos
Not applicable

Created on ‎03-29-2010 08:44 AM

I have contacted Fortinet support and have done some research of my own... This may have fixed the issue, but I need to do more testing to be 100% sure... Its an intermittent problem for me (4.1MR3). I produced many debug reports for Fortinet, but nothing showed, they believe one of the two solutions below is the answer. ticket below: --------------------------------------------------------------------- Dear Support, We are planning to release SSL RDP to approx 100 users over the next few weeks. However, I have noticed that occasionally the JAVA RDP client drops connection to our Windows 2003 Terminal servers and displays following error message " Connection terminated - Internal Protocol Error" (Figure 1), and the server event log reports " The RDP protocol component DATA ENCRYPTION detected an error in the protocol stream and has disconnected the client" (Figure 2). It' s worth noting that we don' t experience these connection issues when using the native Windows RDP client (using IPSEC or SSL Tunnel Mode), so it appears that there may be an issue with the Fortinet JAVA RDP client or how the data is encapsulated. There is a Microsoft knowledge base article (KB323497) that explains the symptoms and a possible registry fix (not tested yet). Another forum suggests disabling " large send offload" on the NIC as this can interrupt the RDP stream (I am currently testing this solution). The Fortinet forum http://support.fortinet.com/forum/tm.asp?m=57360&p=2&tmode=1&smode=1 also suggests that other users are having similar problems. Please can you help? ---------------------------------------------------------------------------- It would be useful if someone else can try the above and compare results. Regards - Rob
2741
0 Kudos
Maik
New Contributor II
In response to

Created on ‎09-01-2010 05:00 AM

Hi Bertie was the support able to help you on this topic? Did you find a solution? regards Maik
2741
0 Kudos
Not applicable

Created on ‎03-29-2010 09:06 AM

I think the rdp client disconnecting due to private certificate key on the Terminal Services server not to be synchronized with the dll values on the server. so you can try with the registry tweak by deleting the Certificate, X509 Certificate and X509 Certificate ID parameters.
2741
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.