Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
What is the DNS you setup for SSLVPN client?
And, does your SSLVPN profile allow routes to the DNS?
Also, Have you setup Policy to allow SSLVPN to the DNS?
- for SSL VPN i was setup my local DNS server
- already allowed coz if i pinging to my local network using IP address already reply
- policy direct to DNS IP Server ?
Hi,
- Are you trying to ping a hostname in Internet or a hostname which inside your network?
- When you try to ping the FQDN does it resolve to an IP address or it does not even resolve?
- If it resolves and you are observing timeout in pings then you can verify if the firewall has the correct policy and route for the communication.
- If the IP is not resolving then try to ping the DNS server from the client PC and check the reachability. You will need to have policy to allow the DNS communication from SSL VPN interface to the destination interface.
Regards,
Shiva
Hello @Yayat1
1. Have you enabled split dns?
2. When you connect to SSLVPN, can you run nslookup to your internal domain and share the result?
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1673 | |
1083 | |
752 | |
446 | |
226 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.