Lazy loaded image
Learning
Checklist for Fortigate admin access over SSL-VPN
00 min
Sep 4, 2024
Nov 23, 2024
type
status
date
summary
tags
category
URL
password
slug
icon
This is a Checklist for Fortigate admin access over SSL-VPN

1. Trusted hosts

Ensure that the SSL-VPN source address or SSL-VPN address pool is on the trusted host list for admin access to the Fortigate.

2. Allowaccess on Interface

Ensure you have allowed the service or port access on the interface using the following command “set allowaccess ping https ssh” under the interface configuration.

3. Firewall policy

Ensure you have a firewall policy from the SSL-VPN interface to the LAN to where you intend to connect to.

4. Routing table

Ensure you have a route to the Firewall interface. You may have split-tunneling specifying the routable addresses by SSL-VPN any route not specified will route locally via users local internet breakout. 10.100.0.0/24 is the LAN network directly connected to the firewall. You can specify just the individual firewall interface address if you wanted to.
If using Windows you can check the routing table by running the command route print.
Please let me know what you thought of the guide and if it worked, what issues you ran into or if anything wasn’t clear. Thank you for reading.
上一篇
How to configure a SSL-VPN with certificate authentication on a Fortigate
下一篇
NESSUS 10.6.4在Windows11安装破解全指导+避坑指南-CSDN博客