On the Fortigate under SSL-VPN Settings you need to specify an Address Range. But you also need to do the same thing under SSL-VPN Portals Source IP Pools. Presumably if you have multiple portals each one would have their own IP pool. So why are you forced to enter in the range twice?
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi @systemgeek,
IP range under SSLVPN setting is a global setting for all portals. Source IP Pools under SSLVPN portal allows you to override the IP range per portal for more flexibility. You can refer to https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-configure-specific-SSL-VPN-address-...
Regards,
HI @systemgeek ,
On the SSL VPN portal you specify which IP sources are allowed to access , while on the SSL VPN settings you are specifying what IP address to assign to the authenticated users.
Hello @systemgeek ,
I couldn't find any explanation related to that. But in my opinion, Fortigate uses as a fallback IP which is configured IP in the vpn settings.
I think this article will shed some light, https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-SSL-VPN-is-connected-but-is-not-gett...
Hi @systemgeek,
IP range under SSLVPN setting is a global setting for all portals. Source IP Pools under SSLVPN portal allows you to override the IP range per portal for more flexibility. You can refer to https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-configure-specific-SSL-VPN-address-...
Regards,
So for example I have reserved a /16 for all VPN users. That /16 is then broken up into /24s for each VPN group. I should put the /16 into the SSLVPN Settings global setting and then each portal put in the /24 I want to assign to the users of that portal????
Sound right for an example?
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1696 | |
1091 | |
752 | |
446 | |
228 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.