Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
kapilkala
New Contributor

Created on ‎01-02-2024 10:40 PM

FortiClient V7.2.3 - (0 Bytes Receiving)

 

FT Bytes 0 Rcvg.JPGHi,

 

We are using 60F and users connecting there network via forticlient, it was working fine but suddenly issue came is like cant connect there network but client its connected successfully..

 

Image attached for reference..

 

 

 

Labels:
1509
0 Kudos
11 REPLIES 11
AEK
SuperUser
SuperUser

Created on ‎01-03-2024 02:38 AM

First thing to do it to check the related traffic logs on the remote FortiGate.

AEK
AEK
1140
0 Kudos
kapilkala
New Contributor

Created on ‎01-03-2024 04:08 AM

Hi,

 

Thanks for your reply... please kindly check attached image where can see the details.. or another logs have to check..FortiGate.JPGSystem Event.JPG

1128
0 Kudos
AEK
SuperUser
SuperUser

Created on ‎01-03-2024 04:16 AM

Hi

I mean Log & Report > Forward Traffic, then filter source to see traffic from your VPN client.

There you can see if your traffic is blocked and why it is blocked.

If traffic is blocked, you can double-click on the log to see details.

AEK
AEK
1123
0 Kudos
kapilkala
New Contributor
In response to AEK

Created on ‎01-03-2024 04:33 AM

Forward Traffic, then filter source to see traffic from your VPN client..

 

I tried to find related logs but not getting, Even I tried to make filter Source VPN Client IP & VPN Type...

1118
0 Kudos
AEK
SuperUser
SuperUser
In response to kapilkala

Created on ‎01-03-2024 04:45 AM

In order to generate logs, make sure the related firewall rules have "Log Allowed Traffic: All Sessions.

Check sections 1 & 2 in the below link.

https://docs.fortinet.com/document/fortigate/5.4.0/cookbook/476970/logging-fortigate-traffic-and-usi...

Also do the same for "Implicit Deny" policy (0) to see if your traffic is not matching any allow policy.

AEK
AEK
1114
0 Kudos
AEK
SuperUser
SuperUser
In response to AEK

Created on ‎01-03-2024 04:51 AM

On the other hand you may also check if your VPN client IP is quarantined, as this may also lead to the same behavior.

diagnose user quarantine list 

 

AEK
AEK
1110
0 Kudos
kapilkala
New Contributor
In response to AEK

Created on ‎01-03-2024 04:53 AM

Yes I select already all session option I tried to enable NAT under that VPN policy so now can see the sent & receiving data .......but not able to access the VPN network..

 

 
 

image.png

1106
0 Kudos
kapilkala
New Contributor
In response to kapilkala

Created on ‎01-03-2024 05:07 AM

Now I found logs also & I noticed something also if I will try to open switch or access point in web so that IP will redirect to other IPs...

Main Device IP - 192.168.x.x

Redirect Page IP - http://169.254.1.1:1000/fgtauth?07040c809482fdb0

 

 

image.png

1097
0 Kudos
hbac
Staff
Staff
In response to kapilkala

Created on ‎01-03-2024 07:39 AM

Hi @kapilkala,

 

Can you check policy 4 to see why it is being blocked. You mentioned that it is being redirected, do you have captive portal enabled? You can run debug flow to get more information: 

 

di deb disable
di deb res
diagnose debug flow filter clear
di deb flow filter addr 10.0.0.1
diagnose debug flow show function-name enable
di deb flow show iprope en
diagnose debug console timestamp enable
diagnose debug flow trace start 500
diagnose debug enable

 

Regards, 

1072
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.