Hi Team,
We are trying to connect to VPN using Forticlient latest version on Ubuntu 20. It connects to VPN but we are able to do google meet call as well as when pinged to 8.8.8.8 packets they are getting received but fails to send the packets. Which leads to blocking internet access. Please suggest any solution here.
Thanks,
Hi,
You may want to check the following:
1. Are you using SSLVPN or IPSec VPN?
2. If you are using SSLVPN, is split-tunnel enabled?
3. If you do not have split-tunnel enabled, please check if you have a policy that allows VPN range IP to access to WAN
4. If you do have split-tunnel enabled, you may want to check your local routing of Ubuntu machine. When split-tunnel is enabled, the route towards the Internet should use the local Internet of your hosts.
You can also check the debug flow when you are connected to the VPN by running the following command in FortiGate CLI:
diag deb flow filter saddr <source_IP_of_VPN>
diag deb flow filter daddr 8.8.8.8
diag deb flow filter proto 1
diag deb flow sh function-name ne
diag deb flow sh iprope en
diag deb flow trace start 20
diag deb en
Once the above is in place, from the Ubuntu machine, do a ping to 8.8.8.8, you should be able to see whether the packet is being processed or dropped by FortiGate.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1740 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.