Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
ythevenot
New Contributor

SSL web application blocked

hi guys, i' m trying to setup SSL-VPN access to an internal website. This works fine, however the website does call to outside links (some google APIs, java codes and pictures hosted on public websites). When i connect trough SSL-VPN with webmode i can only access the internal website but the the outside links all fail. I found the following warnings in the event log: sslvpn-session id: 39937 action: ssl-web-deny message: ssl web application blocked remote IP: IP of client connected to SSL VPN destination: URL of external sites I' ve tried to create a rule from ssl.root to untrust to allow any service to all, always with action SSLVPN but that doesn' t help. Any suggestion? thanks, kind regards, Yannick
2 REPLIES 2
jdxnster
New Contributor

I know this reply is over 2 years old, but hopefully it might help other people having this issue since it appears to be the first result in google.

 

I resolved this issue by ensuring that the firewall policy referenced the associated users in the policy rule that you added, you can't just add a rule for this associated access and not include any users.

 

tldr: In the source field of your firewall policy have the sources users with it as well.

 

That's what fixed it for me.

jose_paulo

Sir, can you show me the policy that allows (css from external site and jquery codes) through ssl vpn web access. 

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors