shrew soft vpn client won’t connect to remote site

Author
vusal.d
New Member
  • Total Posts : 15
  • Scores: 0
  • Reward points: 0
  • Joined: 2018/12/15 13:59:47
  • Status: offline
2019/02/08 23:55:27 (permalink)
0

shrew soft vpn client won’t connect to remote site

Hello everyone  I stuck resolving one issue for our user. She uses shrew vpn client to connect to vpn. It is not like l2tp/ipsec connection with username password and psk. Actually I can connect to vpn eve with l2tp/ipsec. But she uses something like vpn site-to-site connection. I noticed in settings of vpn confid it has phase1 and phase2 selector and everything else what required to setup site-to-site connection
so  whenever she clicks connect this soft stucks at “bringing up tunnel” . It may stay bringing up tunnel state many hours with no error . 
i cant see any error in fortigate logs (attaced). Remote site admin told that everyone can connect so somethin preventing her connection. ..maybe my firewall.
 
config loaded for site 'xx.xxx.xx.xxx.vpn.vpn'
attached to key daemon ...
peer configured
iskamp proposal configured
esp proposal configured
client configured
local id configured
remote id configured
server cert configured
client cert configured
client key configured
bringing up tunnel ...

 
This is my rule config
config firewall policy
    edit 20
        set name "Allow VPN Connection"
        set uuid 1d502eac-2a52-51e9-9c5c-9403aa57bb56
        set srcintf "port10"
        set dstintf "port9"
        set srcaddr "all"
        set dstaddr "Allowed VPN servers"
        set action accept
        set schedule "always"
        set service "vpn-tunneling"
        set logtraffic all
        set logtraffic-start enable
        set capture-packet enable
        set fsso disable
        set nat enable
    next
end

 
the host is windows 8 pc

Attached Image(s)

#1

1 Reply Related Threads

    vusal.d
    New Member
    • Total Posts : 15
    • Scores: 0
    • Reward points: 0
    • Joined: 2018/12/15 13:59:47
    • Status: offline
    Re: shrew soft vpn client won’t connect to remote site 2019/02/10 11:00:04 (permalink)
    0
    Seems it is not fortigate issue. 
    Thanks for viewing question :)
    #2
    Jump to:
    © 2019 APG vNext Commercial Version 5.5