Hi all, we have more and more problems changing from SSL VPN to IPSec. I
tried with 2 PCs Win11 where SSL VPN worked fine for months but IPSec is
not doing any connections. Since I see in the Logs I cant connect via
UDP500 (changes to 1011) I found o...
Hi, we have a HA FGT90G 7.4.7 and using SSL VPN with > 70 remote Users.
We already have set up the IPSec and are testing for 2 months now. The
results sofar are dissapointing. Users comment there are many
disconnections and they have to reconnect man...
Hi, how can we configure this situation. We have a SD Wan with normal
internet access A (1GB/1GB) with NAT router before the FG. The other
interface is B MPLS and we dont have NAT. Today A failed and users didnt
have access to the internet but dod ha...
Hi, I have a new FG50G with 7.4.8 and I created on the Web GUI a LAG
Interface to connect lan1 and lan2 to port 1/1/1 and 1/1/2 of aruba6000
Switch. Under the LAG Interface I created different Vlans with DHCP.
Connecting to the aruba I dont get autom...
Hi, we have FGT90G with 7.4.7 and 4 FortiAPs with 7.4.X - everything
working without any problems for almost one year. We didnt change
anything and this morning all FortiAPs show offline in Managed Forti
APs. No changes were made in interface and eve...
Hi, thanks....checking services.msc I dont see any IPSec Policy Agent. I
still believe in both Win11 I cant install an IPSec client. 500/ 4500
cant be blocked since I tried also with an older Win10 and 6.4 FC and
IPSec connects right away. Any other ...
Hi, I just tried again and with NAT on both policies it is working.
Thing is, traffic over MPLS Access B is going over our central FG with
also NAT policy. Now I tried from here, disabling Access A so that all
traffic goes over MPLS B and before that...
Hi, we have 7.4.7 and since it is the last one with SSL VPN
functionality we cant upgrade to 7.4.9. Last week it worked fine so it
is really strange since I am not confident that it works as the SSL VPN
and if this error is an issue and we cant upgra...
Hi, thanks for the response. Thats what I am usually doing and sofar I
didnt have the problem to delete references in routing, vips, policies
(i just change to other interfaces like DMZ), BUT in this case I cant
get it out of the upg-zone-port9. No c...
Hi, we use FortiToken one time password on the FG. Again, we changed
from FG80E to FG90G before sommer and we have like 50 users connecting
with SSL VPN + Token all the time. Knowing that WE HAVE TO switch to
IPSec we tried with the IT department and...
