Hello, We use two FortiGate 3700D (HA cluster) running FortiOS 5.2.3,build0670, managed from FortiManager 5.2.2-build0706 150415. We're testing the SSL VPN features and FortiClient. Everything runs correctly under Windows, Mac OSX, Linux and Android. We meet some difficulties under Apple IOS (iPad and iPhone). Currently we use NetExtender from SonicWALL (Dell), which runs as VPN Client under all OS. But the App FortiClient under Apple IOS doesn't run as VPN Client, we can etablish a VPN connexion inside the App but not under the IOS to be able to use other App (as RDP) with the VPN tunnel. Could you tell me if it's possible to etablish a VPN connexion from Apple IOS device to a Fortigate infrastrure, and use other Apps with this VPN tunneling? If yes, what is the best way to do that? Regards, Chris
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Please check out this video from FortiNet
[link]https://www.youtube.com/watch?v=xSxuENsOuUw[/link]
Thanks gschmitt, but I would like to be able to etablish a SSL VPN connexion, not IPsec. Do you know if it's possible to do that under IOS? FortiClient does it under Android, but not under IOS, why?
gschmitt wrote:Please check out this video from FortiNet
Yes in short, & here's a cookbook
http://cookbook.fortinet.com/ssl-vpn-using-forticlient-for-ios/
just follow the example and test the phone device
PCNSE
NSE
StrongSwan
Thanks emnoc But the App FortiClient for IOS doesn't run as a "true" VPN Client, we can open a SSL VPN connexion inside the App but not under the IOS to be able to use other App (as RDP) with this VPN tunnel. FortiClient for Android does it, but not FortiClient for IOS! Under IOS, when we open a SSL VPN connexion (with Dell NetExtender for example), a VPN sign appears at the top of the iPhone screen (see iphonevpn.jpg as attachment), but when we open a SSL VPN connexion with FortiClient, nothing appears!
emnoc wrote:Yes in short, & here's a cookbook
http://cookbook.fortinet.com/ssl-vpn-using-forticlient-for-ios/
just follow the example and test the phone device
FortiClient on iOS can only provide web portal function. It's not a tunnel. Why? Because Fortinet hasn't been able to access some privilege APIs from Apple.
Thanks Chris.
I hope Fortinet will be able to upgrade their App to tunnel functions... as SonicWALL Mobile Connect, or other VPN solution as Junos Pulse from Juniper.
As explained on this page, these app offer a layer-3 VPN on iOS devices:
https://kb.juniper.net/In...e=content&id=TN211
Chris.Lin wrote:FortiClient on iOS can only provide web portal function. It's not a tunnel. Why? Because Fortinet hasn't been able to access some privilege APIs from Apple.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1709 | |
1093 | |
752 | |
446 | |
231 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.