Ranithd
New Member
- Total Posts : 2
- Scores: 0
- Reward points: 0
- Joined: 2017/05/03 02:46:56
- Status: offline
Fortigate SSL VPN disconnects between 2-5 minutes suddenly
Dear all,
Im using fortigate 60E with 5.6 firmware. All users can work only for few minutes & the VPN suddenly gets disconnected. No error comes in. I have installed forticlient 5.6 aas well, but it also give same results
|
Agent 1994
Silver Member
- Total Posts : 73
- Scores: 10
- Reward points: 0
- Joined: 2016/08/03 09:15:51
- Location: Rosario, Santa Fe, Argentina
- Status: offline
Re: Fortigate SSL VPN disconnects between 2-5 minutes suddenly
2017/10/11 08:20:46
(permalink)
Do you have two wan interfaces?
|
Ranithd
New Member
- Total Posts : 2
- Scores: 0
- Reward points: 0
- Joined: 2017/05/03 02:46:56
- Status: offline
Re: Fortigate SSL VPN disconnects between 2-5 minutes suddenly
2017/10/11 08:32:53
(permalink)
I have 4M ILL with public IP + 2 other Internet links. load balanced between 3 of them as ILL(50%) & 25% 25% .
VPN policy works through ILL
|
Agent 1994
Silver Member
- Total Posts : 73
- Scores: 10
- Reward points: 0
- Joined: 2016/08/03 09:15:51
- Location: Rosario, Santa Fe, Argentina
- Status: offline
Re: Fortigate SSL VPN disconnects between 2-5 minutes suddenly
2017/10/17 11:31:08
(permalink)
☄ Helpfulby mhnd68 2019/09/08 06:46:50
Sorry for the delay, i was *way* busy  I had a similar problem with SD-WAN where i work: replies from the ssl vpn were load balanced among our links, i observed traffic going out to wan2 with wan1's IP. It was solved with this: config vpn ssl settingsset route-source-interface enableend
|
Bonus45
New Member
- Total Posts : 1
- Scores: 0
- Reward points: 0
- Joined: 2015/02/17 09:57:13
- Status: offline
Re: Fortigate SSL VPN disconnects between 2-5 minutes suddenly
2018/03/19 19:20:27
(permalink)
Hey, thanks agent. I was setting up a new vpn tonight and couldn't figure out the frequent disconnects. Your listed fix did the trick.
Thanks!
|
Juma
New Member
- Total Posts : 4
- Scores: 0
- Reward points: 0
- Joined: 2018/09/06 06:00:45
- Status: offline
Re: Fortigate SSL VPN disconnects between 2-5 minutes suddenly
2018/09/06 06:06:30
(permalink)
Hi All,
I have similar issue, I have FGT 1200D version 5.6.0.
I have two ISP links, and I have set up SD-WAN.
I tried the above solution but it still does not work. I have also in put the command below
config vpn ssl settings
set source-interface "ISP" where ISP is the desired link.
Still doesn't work. Anybody figured it out?
|
Agent 1994
Silver Member
- Total Posts : 73
- Scores: 10
- Reward points: 0
- Joined: 2016/08/03 09:15:51
- Location: Rosario, Santa Fe, Argentina
- Status: offline
Re: Fortigate SSL VPN disconnects between 2-5 minutes suddenly
2018/09/06 10:11:56
(permalink)
Did you try "set route-source-interface enable"?
|
Juma
New Member
- Total Posts : 4
- Scores: 0
- Reward points: 0
- Joined: 2018/09/06 06:00:45
- Status: offline
Re: Fortigate SSL VPN disconnects between 2-5 minutes suddenly
2018/09/06 22:13:21
(permalink)
Hi Agent 1994,
Yes I did. Still disconnecting after a few minutes.
|
Ashu
Gold Member
- Total Posts : 150
- Scores: 13
- Reward points: 0
- Joined: 2015/04/17 04:33:45
- Location: Doha,Qatar
- Status: offline
Re: Fortigate SSL VPN disconnects between 2-5 minutes suddenly
2018/09/07 02:28:03
(permalink)
Hi
Is there any drops in your internet connection and how many links added for the SSL VPN .Try to check the logs in the forticlient .
Regds,
Ashik
|
Juma
New Member
- Total Posts : 4
- Scores: 0
- Reward points: 0
- Joined: 2018/09/06 06:00:45
- Status: offline
Re: Fortigate SSL VPN disconnects between 2-5 minutes suddenly
2018/09/10 23:55:33
(permalink)
Hi Ashik,
No drops in the internet connectivity , I had suspected that early one.
For SSL VPN we only use one link.
I uploaded the logs to Fortinet support, they suggested a but in 5.6 which an upgrade might sort.
That's the next course of action as of now.
|
Ashu
Gold Member
- Total Posts : 150
- Scores: 13
- Reward points: 0
- Joined: 2015/04/17 04:33:45
- Location: Doha,Qatar
- Status: offline
Re: Fortigate SSL VPN disconnects between 2-5 minutes suddenly
2018/09/11 00:20:30
(permalink)
HI,
Normally if you have More than one Wan link ..Below command will help you to solve disconnection issue .
set route-source-interface .
Just check if you have already run this command .
Regds,
Ashik
|
Juma
New Member
- Total Posts : 4
- Scores: 0
- Reward points: 0
- Joined: 2018/09/06 06:00:45
- Status: offline
Re: Fortigate SSL VPN disconnects between 2-5 minutes suddenly
2018/09/11 00:31:37
(permalink)
Yes I did. Does not work
Also this command below
set source-interface "ISP" where ISP is the desired link.
|
Ashu
Gold Member
- Total Posts : 150
- Scores: 13
- Reward points: 0
- Joined: 2015/04/17 04:33:45
- Location: Doha,Qatar
- Status: offline
Re: Fortigate SSL VPN disconnects between 2-5 minutes suddenly
2018/09/11 01:11:52
(permalink)
Hi, Try this Tunnel-mode connection shuts down after a few secondsThis issue can occur when there are multiple interfaces connected to the Internet (for example, SD-WAN). This can cause the session to become “dirty.” To fix this, you must allow multiple interfaces to connect without issue. If you are using a FortiOS 6.0.1 or later, use the following CLI command: config system interface
edit <name>
set preserve-session-route enable
next
end If you are using a FortiOS 6.0.0 or earlier, use the following CLI command: config vpn ssl settings
set route-source-interface enable
end Regds, Ashik
|
jamesd
New Member
- Total Posts : 2
- Scores: 0
- Reward points: 0
- Joined: 2018/10/19 23:19:57
- Status: offline
Re: Fortigate SSL VPN disconnects between 2-5 minutes suddenly
2018/10/19 23:51:44
(permalink)
Ashik, I'm facing the same problem and trying to execute the CLI commands you posted. (V6.0.2) I have 3 WAN connections, the SSL VPN is listening on WAN 1 named "TRUE" these are interfaces under the SD-WAN interface. config system interface
edit <name> // I've tried edit "sdwan", edit "sd-wan", edit "true" & edit "root"
set preserve-session-route enable
next // I get the error after this
end I receive the error: Attribute 'vdom' MUST be set.
Command fail. Return code 1 I assume I'm not entering the correct <name> but I'm not sure what it should be. Can you shed some light on this for me please?
|
Ashu
Gold Member
- Total Posts : 150
- Scores: 13
- Reward points: 0
- Joined: 2015/04/17 04:33:45
- Location: Doha,Qatar
- Status: offline
Re: Fortigate SSL VPN disconnects between 2-5 minutes suddenly
2018/10/20 21:45:38
(permalink)
Hi
Any VDOM is configured in your firewall .In that case you should run this command on respective vdom.
Config Vdom
edit <vdom name>
Then try those commands .
|
jamesd
New Member
- Total Posts : 2
- Scores: 0
- Reward points: 0
- Joined: 2018/10/19 23:19:57
- Status: offline
Re: Fortigate SSL VPN disconnects between 2-5 minutes suddenly
2018/10/21 00:06:19
(permalink)
Thanks Ashu, That has fixed the issue.
post edited by jamesd - 2018/10/21 16:45:31
|
Holy
Gold Member
- Total Posts : 168
- Scores: 4
- Reward points: 0
- Joined: 2014/08/07 03:56:56
- Status: offline
Re: Fortigate SSL VPN disconnects between 2-5 minutes suddenly
2018/10/31 06:55:09
(permalink)
Hello Guys,
faced the same issue first on 5.6.6 and could fix it with
config vpn ssl settings
set route-source-interface enable
end
2 Days ago we upgraded to 6.0.3 and had the issue straight away.
i applied this
config system interface
edit <name>
set preserve-session-route enable
next
end
But it didnt realy fixed the issue.
now we have Random Disconnects i a range sometimes 3 - 6 Minutes, sometimes 10 -15 and sometimes even after 20 Minutes.
All users that are currently connected will be disconnected at once.
Dont know what to do as we rely on a stable connection for SSL VPN TUnnels.
Any Ideas?
Thank you
|
mhnd68
New Member
- Total Posts : 1
- Scores: 0
- Reward points: 0
- Joined: 2019/09/08 06:46:14
- Status: offline
Re: Fortigate SSL VPN disconnects between 2-5 minutes suddenly
2019/09/08 06:49:25
(permalink)
Thanks for the help
now it is linked without any disconnection
|