Hi,
I'm trying to get my external DHCP to assign IP-addresses to my SSLVPN clients. According to the SSLVPN documentation you should configure DHCP-relay on the ssl.root interface via CLI. To this pont there are no problems.
In the SSLVPN settings you should specify a Address Range for the SSLVPN and you cannot specify anything else than "Automatically assign addresses" or "Specify custom IP ranges". In the portal settings, I also need to specify "Source IP Pools".
What should I specify there?
I don't want the Fortigate to assign the addresses...
Any ideas?
See http://docs.fortinet.com/d/fortigate-ssl-vpn-3 page 17.
We're in the progress of implementing it. I just do not know it "Source IP Polls" will continue to work for the portals.
Let me know....
stelac wrote:Hi,See http://docs.fortinet.com/d/fortigate-ssl-vpn-3 page 17.
We're in the progress of implementing it. I just do not know it "Source IP Polls" will continue to work for the portals.
Let me know....
I've seen the documentation.
The problem is that you cannot remove the "Source IP Pools" in the portal, which means that the Fortigate will still act as DHCP server for the VPN users.
I'm running version 5.2.6
This is more confusing than a thought!!!!
config system interface
edit ssl.root
[LEFT] set dhcp-relay-service [enable|disable][/LEFT]set dhcp-relay-ip
next
end
To relay the request to the DHCP server, the relay has to indicate what is the subnet. Does it use the "Source IP Pools" ?????
I opened a ticket with the support... I will update you.
fwiw: The dhcp relay agent should include the dhcp agent id which is how your dhcp-server allocated dhcp reservations.
PCNSE
NSE
StrongSwan
Could you please send us the CLI commands... Thanks
The helpdesk agent, Erik Piquette, just replied to my ticket 1644038 saying that "DHCP relay" is not working for SSL VPN. The documentation is bad and has to be adjusted.
Does anyone know if there is any solution regarding this issue or still not?
Hello,
i´ve the same issue. Is there a known possibility to use dhcp in combination with ssl vpn to provide dhcp options?
Regards
Hi Stelac, did you get any reply from support or still not?
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1737 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.