Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
netmanb2k
New Contributor II

Remote Access Secure Solution

I have customer using the Office fortigate as a gateway for all users inside the office, and even if they are working remotely from home, or any public Wi-Fi and they need all remote users to use the SSL VPN always before use the internet so the SSL VPN is non split tunnel so all traffic will be forwarded to the FortiGuard security profiles.

 

The issue is as you know client VPN is very sensitive to the internet latency and speed so it keep disconnect so they have to connect again or internet will be slow during connected to the VPN.

 

Customer want secure solution for remote users not only to access the Head Office they need secure remote connection for internet and i don't think SSL VPN is the solution !

 

Any ideas what could be the best solution for them

2 REPLIES 2
Atul_S
Staff
Staff

Hello,

 

If you do not want to use any external VPN client, you can try to use the inbuilt VPN with MS windows.

Please refer to the below link and see if this helps you.

https://docs.fortinet.com/document/fortigate/6.0.0/handbook/232068/pptp-and-l2tp

https://docs.fortinet.com/document/fortigate/6.2.5/cookbook/386346/l2tp-over-ipsec

https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-connect-Windows-10-client-to-L2TP-V...

https://community.fortinet.com/t5/FortiGate/Technical-Note-L2TP-over-IPSec-with-Windows-7-and-Vista/...

 

Apart from this, you can always create a ticket with the support just in case if you have a nonworking Forticlient setup environment using SSLVPN/IPSEC.

 

Just for reference to use IPSEC VPN using FortiClient.

https://docs.fortinet.com/document/fortigate/5.6.0/cookbook/589121/ipsec-vpn-with-forticlient

 

Thanks

Atul Srivastava
Muhammad_Haiqal

Hi netmanb2k,


VPN basically encrypting traffic from your PC to the gateway(Fortigate)

PC <<encrypted>> Fortigate
Traffic to the internet is not encrypted by the Fortigate.

Related to the disconnection issue. This can be many possibilities.

Due to you are using full tunnel, means every SSLVPN user traffic going to utilize bandwidth on the Fortigate. This include, watching video(netflix, youtube, etc), download(windows update, games, etc) and so on. If bandwidth on the Fortigate is low, it is expected to have disconnection issue too.

haiqal
Labels
Top Kudoed Authors