- Forums
- Knowledge Base
- Customer Service
- FortiGate
- FortiClient
- FortiAP
- FortiAnalyzer
- FortiADC
- FortiAuthenticator
- FortiBridge
- FortiCache
- FortiCarrier
- FortiCASB
- FortiConnect
- FortiConverter
- FortiCNP
- FortiDAST
- FortiDDoS
- FortiDB
- FortiDNS
- FortiDeceptor
- FortiDevSec
- FortiDirector
- FortiEDR
- FortiExtender
- FortiGate Cloud
- FortiGuard
- FortiHypervisor
- FortiInsight
- FortiIsolator
- FortiMail
- FortiManager
- FortiMonitor
- FortiNAC
- FortiNAC-F
- FortiNDR (on-premise)
- FortiNDRCloud
- FortiPAM
- FortiPortal
- FortiProxy
- FortiRecon
- FortiRecorder
- FortiSandbox
- FortiSASE
- FortiScan
- FortiSIEM
- FortiSOAR
- FortiSwitch
- FortiTester
- FortiToken
- FortiVoice
- FortiWAN
- FortiWeb
- Wireless Controller
- RMA Information and Announcements
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
- Fortinet Community
- Forums
- Support Forum
- VPN stuck at status 98%
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
VPN stuck at status 98%
We are running Windows Server 2012 R2. We have installed the most recent FortiNet client (vpn only), version 5.2.0.0591. We have configured an SSL-VPN connection. When we click on the " connect" button, the status progresses all the way to 98% and then hangs. We have disabled the windows firewall, do not have any anti virus software installed, no group policies are being applied, and no other applications are running when we attempt to make the VPN connection. Thanks for helping!
Solved! Go to Solution.
2 Solutions
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi All,
I just fix it by apply this fix and re-install fortigate client.
https://skydrive.live.com/redir?resid=86BDD34D41D3E179!2065&authkey=!AAeyjPB4O4uVxek
You may find the detail from this forums. Hope this could help you all. Thanks.
https://supportforums.cisco.com/discussion/11682811/anyconnect-msi-installation-failed-windows-7
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi,
I seem to be experiencing this problem, or very similar problem.
Forticlient hangs at 98% while connecting. But this only happen occasionally -- especially if the connect dropped for some reason and I try to connect again (possibly every time this happens).
I am able to get Forticlient to connect if I reboot my machine. So maybe this is not the identical problem discussed here. Sometimes it gives the "You already have an open SSL VPN connection" warning, but not always. Either way, it stops at 98%, after a minute or so, it just clears the login fields of the forticlient window as if nothing had ever happened.
Rebooting my machine "resets" something and makes connection possible. But this is a frustrating workaround.
Is there a process or service I should be able to restart that would have the same effect as rebooting?
101 REPLIES 101
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi guys,
I have this Windows 8.1 issue; SSL client connects then disconnects after 10s; any hint to make this work?
Server is Fortigate 100D with 5.2.2
Thanks in advance!
The most expensive and scarce resource for man is time, paradoxically, it' s infinite.
The most expensive and scarce resource for man is time, paradoxically,
it' s infinite.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I also had encountered that problem many times. My solution for this problem and somehow it always works:
1. Remove SSL VPN client from computer 2. Restart computer 3. Install newest VPN SSL client software
4. Configure new connection 5. Tick "Keep connection alive until manually stopped"
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Here is my similar situation and the solution. I did contact technical support and they directed me to the Microsoft forums. I adapted my solution from the link they provided.
FG200B - 5.2.2
Vendor cannot connect to SSL VPN after upgrading from SSLVPN client 4.x to FortiClient 5.x from forticlient.com
I installed the same client to test. Before changing anything my 4.x SSL VPN client worked just fine. After switching to FortiClient 5.x my VPN connection now fails at 98%. I open support ticket and tell support the 5.x client is broken. after a lot of back and forth talk, I downgrade back to my 4.x client with the same failure at 98%. Now I realize it is not a 5.x client issue.
Now that I have resolved this, my theory is that the WAN Miniport adapter (purely software defined in the registry) got corrupted either during the 4.x uninstall, the 5.x install, or the 4.x > 5.x upgrade. [I cannot remember if I upgraded or uninstalled/installed]
my solution is below:
Windows RAS Error 720 - PPP VPN fails or disconnects http://www.paulscomputers...les/article.php?ID=298
FG200D 5.6.5 (HA) - primary [size="1"]FWF50B' s 4.3.x, FG60D's 5.2.x, FG60E's 5.4.x [Did my post help you? Please rate my post.][/size] FAZ-VM 5.6.5 | Fortimail 5.3.11 Network+, Security+
FG200D 5.6.5 (HA) - primary [size="1"]FWF50B' s 4.3.x, FG60D's 5.2.x,
FG60E's 5.4.x [Did my post help you? Please rate my post.][/size] FAZ-VM
5.6.5 | Fortimail 5.3.11 Network+, Security+
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
We're working with Microsoft, and will hopefully have a fix soon. Both companies are aware of the issue. Thank you for sharing the WAN Miniport adapter resolution.
Regards, Chris McMullan Fortinet Ottawa
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Christopher McMullan_FTNT wrote:We're working with Microsoft, and will hopefully have a fix soon. Both companies are aware of the issue. Thank you for sharing the WAN Miniport adapter resolution.
Christopher,
Your post indicates that this is a known issue and that Fortinet and Microsoft are working on it. Can you please provide an update?
Thank you!
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Same Issue here using Windows 7 64X
tried everything that i could fine here and on the web. nothing Helps. it just hangs all the time on 98%... it´s really bad because i do work a lot from home and cannot connect to my customers networks anymore.
No Windows Updates were made and no new installations. it just stoped to work today and i don´t now what else should i try to solve this.
i installed the newest 5.4 with no success either...
NSE 8
NSE 1 - 7
NSE 8
NSE 1 - 7
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
[101:root:324]allocSSLConn:245 sconn 0x2a99c4d000 (0:root)
2016-01-04 11:23:31 [101:root:324]SSL_accept returned 0.
2016-01-04 11:23:31 [101:root:324]Destroy sconn 0x2a99c4d000, connSize=0. (root)
2016-01-04 11:23:33 [102:root:323]allocSSLConn:245 sconn 0x2a99c4d000 (0:root)
2016-01-04 11:23:33 [102:root:323]main.c,epollFdHandler,549, sconn=0x2a99c4d000[24,-1,-1,-1,-1], fd=24, event=25.
2016-01-04 11:23:33 [102:root:323]main.c:606 s: 0x2a99c4d000 event: 0x19
2016-01-04 11:23:33 [102:root:323]Destroy sconn 0x2a99c4d000, connSize=0. (root)
2016-01-04 11:23:33 [104:root:324]allocSSLConn:245 sconn 0x2a99c4d000 (0:root)
2016-01-04 11:23:33 [104:root:324]SSL established: TLSv1.2 ECDHE-RSA-AES256-SHA384
2016-01-04 11:23:33 [104:root:324]rmt_authutil.c:418 no session id in auth info
2016-01-04 11:23:33 [104:root:324]rmt_authutil.c:701 invalid cache, ret=4103
2016-01-04 11:23:33 [104:root:324]rmt_authutil.c:418 no session id in auth info
2016-01-04 11:23:33 [104:root:324]rmt_authutil.c:639 access failed, uri=[/remote/logincheck],ret=4103,
2016-01-04 11:23:33 [104:root:324]rmt_logincheck_cb_handler:839 user 'exampler' has a matched local entry.
2016-01-04 11:23:33 [104:root:324]two factor check for exampler: off
2016-01-04 11:23:33 [104:root:324]fam_auth_send_req:514 with server blacklist:
2016-01-04 11:23:33 [104:root:324]SSL VPN login matched rule (1).
2016-01-04 11:23:33 [104:root:324]rmt_websession.c:342 decode session id ok, user=[example],group=[ssl_example],portal=[cancomsupport],host=[46.5.16.60],realm=[],idx=0,auth=1,login=1451903013
2016-01-04 11:23:33 [104:root:324]rmt_websession.c:342 decode session id ok, user=[exampler],group=[ssl_example],portal=[examplesupportt],host=[46.5.16.60],realm=[],idx=0,auth=1,login=1451903013
2016-01-04 11:23:33 [104:root:324]rmt_websession.c:342 decode session id ok, user=[exampler],group=[ssl_example],portal=[examplesupportt],host=[46.5.16.60],realm=[],idx=0,auth=1,login=1451903013
2016-01-04 11:23:33 [104:root:324]rmt_websession.c:342 decode session id ok, user= user=[exampler],group=[ssl_example],portal=[examplesupportt],host=[46.5.16.60],realm=[],idx=0,auth=1,login=1451903013
2016-01-04 11:23:33 [104:root:324]rmt_websession.c:342 decode session id ok, user= user=[exampler],group=[ssl_example],portal=[examplesupportt],host=[46.5.16.60],realm=[],idx=0,auth=1,login=1451903013
2016-01-04 11:23:34 [104:root:324]rmt_websession.c:342 decode session id ok, user= user=[exampler],group=[ssl_example],portal=[examplesupportt]host=[46.5.16.60],realm=[],idx=0,auth=1,login=1451903013
2016-01-04 11:23:34 [104:root:324]rmt_websession.c:342 decode session id ok, user= user=[exampler],group=[ssl_example],portal=[examplesupportt]host=[46.5.16.60],realm=[],idx=0,auth=1,login=1451903013
2016-01-04 11:23:34 [104:root:324]rmt_apsession.c:1052 tunnel vd[root] ip[10.212.134.210]
2016-01-04 11:23:34 [106:root:324]allocSSLConn:245 sconn 0x2a99c4d000 (0:root)
2016-01-04 11:23:34 [106:root:324]SSL_accept returned 0.
2016-01-04 11:23:34 [106:root:324]Destroy sconn 0x2a99c4d000, connSize=0. (root
NSE 8
NSE 1 - 7
NSE 8
NSE 1 - 7
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi,
after having encountered the 98% disconnect problem too, I found something that worked for me:
I was charging my mobile over USB, and it provides a modem to Windows. Although the ISDN device is selected for fortissl, and although "repairing" FortiClient and rebooting while the phone was charging, I couldn't connect. After disconnecting the Phone, "repairing" the FortiClient installation and rebooting, I can connect again.
HTH,
McKoene
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Has there been any other progress on this?
I have seen some resolutions here and we have been able to perform some of the WAN Miniport fixes, but when it happened to us it was a combination of that and then memory usage.
Holy have you managed any progress on this? We saw very similar debug results with ours.
----
FG 200B/30D/60D/80D/100D/200D/300D
FE 200D
----
FG 200B/30D/60D/80D/100D/200D/300D
FE 200D
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello, no progress at the Moment. much troubleshooting and Ticket escalation by fortinet. But no final result yet.
The Customer is very upset at the moment and dissapointed
NSE 8
NSE 1 - 7
NSE 8
NSE 1 - 7
Related Posts
- Event status showed Critical in fortisiem 15 Views
- No instant result after passing an... 71 Views
- sd-wan issue 110 Views
- Oracle sessions randomly hanging behind fortigate 114 Views
- ForitiClient Status stop at 48% 190 Views
Labels
-
FortiGate
6,543 -
FortiClient
1,304 -
5.2
801 -
5.4
639 -
FortiManager
563 -
6.0
416 -
FortiAnalyzer
414 -
5.6
362 -
FortiSwitch
333 -
FortiAP
333 -
FortiClient EMS
263 -
6.2
251 -
FortiMail
243 -
FortiAuthenticator v5.5
234 -
5.0
196 -
FortiWeb
150 -
6.4
128 -
FortiNAC
106 -
FortiGuard
102 -
FortiSIEM
89 -
FortiGateCloud
87 -
FortiCloud Products
84 -
IPsec
73 -
FortiToken
70 -
Customer Service
69 -
4.0MR3
64 -
SSL-VPN
60 -
Wireless Controller
58 -
FortiProxy
44 -
FortiADC
42 -
Fortivoice
41 -
FortiEDR
39 -
FortiGate v5.4
34 -
FortiDNS
34 -
FortiExtender
32 -
FortiSandbox
31 -
FortiSwitch v6.4
28 -
Firewall policy
24 -
SD-WAN
24 -
FortiConnect
23 -
FortiWAN
22 -
VLAN
21 -
FortiConverter
21 -
High Availability
20 -
FortiPortal
18 -
ZTNA
16 -
FortiSwitch v6.2
16 -
FortiGate v5.2
16 -
FortiMonitor
14 -
FortiAuthenticator
14 -
Certificate
14 -
DNS
13 -
FortiDDoS
13 -
SAML
12 -
BGP
12 -
FortiGate v5.0
12 -
Routing
12 -
Interface
12 -
FortiCASB
12 -
Logging
11 -
LDAP
10 -
FortiRecorder
10 -
VDOM
10 -
FortiWeb v5.0
9 -
FortiManager v5.0
9 -
Virtual IP
9 -
NAT
9 -
4.0MR2
9 -
RADIUS
8 -
Traffic shaping
8 -
SSID
7 -
RMA Information and Announcements
7 -
FortiSOAR
7 -
SSL SSH inspection
7 -
fortilink
7 -
FortiAnalyzer v5.0
7 -
FortiGate v4.0 MR3
7 -
Admin
7 -
4.0
7 -
Security profile
6 -
Authentication
6 -
Fortigate Cloud
6 -
IP address management - IPAM
6 -
Traffic shaping policy
5 -
FortiBridge
5 -
SNMP
5 -
SSO
5 -
Application control
5 -
FortiManager v4.0
5 -
Static route
5 -
FortiDirector
4 -
WAN optimization
4 -
Web application firewall profile
4 -
DNS Filter
4 -
FortiTester
4 -
FortiCarrier
4 -
FortiCache
4 -
OSPF
4 -
3.6
4 -
FortiScan
4 -
Proxy policy
4 -
IPS signature
3 -
packet capture
3 -
FortiToken Cloud
3 -
FortiAP profile
3 -
Automation
3 -
Intrusion prevention
3 -
DoS policy
3 -
FortiDB
3 -
Port policy
3 -
FortiDeceptor
2 -
FortiInsight
2 -
NAC policy
2 -
Antivirus profile
2 -
VoIP profile
2 -
Traffic shaping profile
2 -
Web profile
2 -
FortiAI
2 -
FortiHypervisor
2 -
Netflow
2 -
trunk
2 -
Fortinet Engage Partner Program
2 -
TACACS
1 -
4.0MR1
1 -
Schedule
1 -
Users
1 -
SDN connector
1 -
Subscription Renewal Policy
1 -
FortiCWP
1 -
FortiNDR
1 -
FortiPAM
1 -
Application signature
1 -
Web rating
1 -
Authentication rule and scheme
1 -
FortiManager-VM
1 -
Multicast routing
1 -
Email filter profile
1 -
Zone
1 -
Internet Service Database
1 -
Explicit proxy
1 -
System settings
1
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2024 Fortinet, Inc. All Rights Reserved.