Hello,Is there a way to limit the maximum number of SSL VPN sessions
globally?We would like to limit the risks of saturation of the fortigate
(avoid entering "conserve mode") Thanks. J.
Hello, We use and old Fortinet Firewall; a fortigate 200B. I've some
problems to make VPN SSL connexions. I can connect to the Web VPN SSL
portal. But the bookmarks I've tried to create does not work. Blank
screen for a RDP connection. And the IP V4 ...
Hello, We use a firewall cluster made up of 2 Fortigate 200D (Fortios
v5.6.3) units.Because it is simpler, for our users, we have chosen to
allow RDP connections via a web channel, through SSL VPN. We have
sometimes 40 (or above) SSL VPN sessions, an...
Hello, I'm using Forti OS 5.6.3 on a Fortigate 200D. I've bought domain
SSL certificate. I've followed the (old) procedure
https://docs.fortinet.com/d/fortigate-how-to-purchase-and-import-a-signed-ssl-certificate
("Purchase and Import a signed SSL Ce...
Hello, I would like access to the Fortigate portal, using an IP address
(public or private), to be redirected to the fqdn. For example, with a
SSL VPN access, the users using the https://x.x.x.x:10999 are redirected
to https://myfortigate.our-enterpr...
Hello,No, I have the problem with v6.4.7 build1911 (GA)
firmware."SSL/SSH Inspection" profile allowing invalid certificates, it
works. Allow invalid certificates, this is probably only possible for a
limited number of sites J.
Hello, Maybe blocked sites when using a Let's Encrypt certificate?
https://docs.certifytheweb.com/docs/kb/kb-202109-letsencrypt/https://letsencrypt.org/docs/dst-root-ca-x3-expiration-september-2021/
(site not accessible with this expired certificate ...
We have tried to enable load balancing ("set load-balance-all enable"
command). But no effect for the VPN SSL sessions.When we have 35 to 40
users connected, the fortigate switch to conserve mode. Have someone any
idea? Thanks.
It seems Fortigate doesn't accept too long certificate names. Mine was
21 characters long. Or may be a naming problem. Some of the names of the
embedded certificates are long too, and cannot be selected.My
certificate with a shorter name, can be sele...
Hello, A clue: I've seen that the current certificate selected
"Fortinet_Factory" is the only with no password shown in the command
(CLI) "show vpn certificate local ". The other ones with password are
not proposed in the interface (Web UI or CLI).??...
