- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
"Failed create SSL" using 7.2.5.0847 Interim version on Kubuntu 24.04
Hello everyone
Recently I installed FortiClient VPN (version 7.2.5.0847 Interim) on Kubuntu 24.04.
I realize this is a dev build, but there is no stable version that supports my system yet AFAIK.
The screenshot depicts my config.
I have exported the logs but I am not sure if it is safe to publish them here.
How do I debug what's wrong?
- Labels:
-
FortiClient
-
SSL-VPN
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi @dominikduda,
What is the error message when connecting? At how many % does it fail? Please collect debugs by following this article: https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-SSL-VPN-Troubleshooting/ta-p/189542
Regards,
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
It fails every time.
I'm not sure how to follow that guide.
The commands "diagnose" and "forticlient diagnose" aren't recognized in my terminal.
I receive the following error: "Error: unknown command 'diagnose' for 'forticlient'".
Where are these commands supposed to come from? Do I need to install something?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
also can you ping the fortigate public IP from the device and make sure the config is fine and try the sniffer on the fortigate with
diag sniffer packet any ' host <client IP > and port 10443 ' 4 0 l
and see if you are able to see traffic on fortigate
, also i found this old article about the same issue with ubuntu, see if this helps
https://community.fortinet.com/t5/Support-Forum/Forticlient-SSL-VPN-not-working-on-Ubuntu/m-p/92309#...
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Not sure how to follow it. "diag" is not a command. Client IP means my private network IP?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Here are the exported logs: https://gist.github.com/dominikduda/6e9646768d5e0a4be85d54ee1b5cabe6
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I think actually my pfx certificate was broken. Received new one and now it behaves differently.
Here are the logs:
https://gist.github.com/dominikduda/d03caf83f0a06fe65064f2813aac78df
