SSLVPN can reach LAN (192.168.5.x) without issue, but cannot route to WLAN (192.168.11.x).
IPv4 Policy SSLVPN-LAN did not include the 192.168.11.x as a Destination, which I have added but does not appear to have resolved.
Not seeing where the VPN is attempting to connect and fail either. Anyone point me in the direction of a relevant log?
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Thanks for the info.
Under Policy and Objects > Objects > Addresses, I have created a new Address IP Range for "WLAN" = 192.168.11.0-192.168.12.255
Under VPN > SSL > Portals > Routing Address, added my WLAN Range
Under Policy and Objects > IPv4 > SSL.ROOT - LAN, added "WLAN" as a Destination.
Already have rules to allow all from LAN > WLAN and vice-versa.
After making said changes, connected to VPN, and route print
I do see the LAN Subnets (192.168.1.x-192.168.6.x) routed over SSLVPN Gateway, but I do not see the 192.168.11.x listed as a destination.
Edit: Re-checked Under VPN > SSL > Portals > Found I didn't save the changes to add the WLAN destination. DERP...anyways, re-added and SAVED. Reconnected to VPN, and the Routes to "WLAN" now appear.
Testing ICMP, and I cannot reach devices over the SSLVPN, but confirmed I can ping LAN-WLAN connected devices. The only thing that is odd to me is that there isn't a specific SSLVPN-WLAN zone.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1711 | |
1093 | |
752 | |
447 | |
231 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.