Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
rbrahmi
New Contributor II

SSL VPN with multiple IP addresses

Hi everyone,

 

I have a problem with SSL VPN sessions in last days,

In SSL VPN monitor I see some users connected with two or three IP addresses from ssl vpn pool 10.212.134.X

So other users could not establish an ssl vpn connexion because there is no ip available 

Is some one here has an idee about this problem 

I need help please 

 

Best regards  

4 REPLIES 4
emnoc
Esteemed Contributor III

Why not increase the pool or set maximum current logins to a value like1 per user?

 

Ken Felix

 

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
rbrahmi
New Contributor II

Thank you for your reply,

 

This is what I did, I increased the pool and it works fine

 

But I want to know the origin of this problem in order to solve it once and for all

 

Best regards

emnoc
Esteemed Contributor III

[ul]
  • To small of a pool
  • disallowing multiple users to login
  • https://forum.fortinet.com/tm.aspx?m=159319
  • forced session timeouts[/ul]

          config vpn ssl settings

                set idle-timeout 3600             set auth-timeout 14400

          end

     

    I would investigate those 3 items, you've already done #1 as a fix. You need adjust and tweak your env to gain what you want.

     

    Ken Felix

     

  • PCNSE 

    NSE 

    StrongSwan  

    PCNSE NSE StrongSwan
    rbrahmi
    New Contributor II

    Thank you emnoc 

    It works well now 

     
    Announcements

    Select Forum Responses to become Knowledge Articles!

    Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

    Labels
    Top Kudoed Authors