Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
nathan_h
Staff
Staff

Created on ‎01-24-2024 09:24 PM

Article Id 295886

Technical Tip: How to check user's Public IP address when it is connected to SSL VPN

Description

 

This article describes how to check a user's Public IP address when it is connected to an SSL VPN using an SSL VPN Tunnel IP address or username.

 

Scope

 

FortiGate.

 

Solution

 

Enter the command 'get vpn ssl monitor'. It is also possible to filter using grep with Tunnel IP address or username.

 

get vpn ssl monitor
SSL-VPN Login Users:
Index User Group Auth Type Timeout Auth-Timeout From HTTP in/out HTTPS in/out Two-factor Auth
0 nathan 1(1) 293 28772 198.18.0.177 0/0 0/0 0

SSL-VPN sessions:
Index User Group Source IP Duration I/O Bytes Tunnel/Dest IP
0 nathan 198.18.0.177 28 9888/0 10.212.134.200

 

Filter using username:


get vpn ssl monitor | grep nathan
0 nathan 1(1) 288 28767 198.18.0.177 0/0 0/0 0
0 nathan 198.18.0.177 33 9888/0 10.212.134.200

 

Filter using Tunnel IP address:


get vpn ssl monitor | grep 10.212.134.200
0 nathan 198.18.0.177 42 11092/0 10.212.134.200

 

It is also possible to check it on VPN Event logs. Right on the Columns and then Select Columns (Remote IP, User).

 

nathan_h_0-1706122928859.png

Labels:
525
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.