Transparent Mode Not allowed VPN user

Helmi Salim Lv1Posted 02 Aug 2023 08:52

Hi Newbie here,

Below is a topology diagram depicting the installation ofNGAF in transparent mode. NGAF is utilized for traffic monitoring and reportingpurposes. The configuration is functioning smoothly, allowing users to accessthe internet. Additionally, FortiGate acts as the DHCP server, successfullyproviding IP addresses for local users. However, an issue arises when it comesto VPN users. Upon installing NGAF in between, VPN users can only access theNGAF IP and are unable to reach any IP beyond NGAF. This is a flat network, utilizing a default single VLAN.

Any sifoo here can help me. Thank you




9023564c9a3b4b54ba.png (41.69 KB, Downloads: 455)

9023564c9a3b4b54ba.png

isabelita has solved this question and earned 10 coins.

Posting a reply earns you 2 coins. An accepted reply earns you 20 coins and another 10 coins for replying within 10 minutes. (Expired) What is Coin?

Enter your mobile phone number and company name for better service. Go

Turn on System>Troubleshooting>Global Passthrough and Analysis.
Allow the user to reconnect to the SSL VPN and view the log.
Please share the screenshot with us if possible. You can conceal private information such as your public IP address, for example.
Is this answer helpful?
CLELUQMAN Lv4Posted 02 Aug 2023 14:50
  
ssl vpn user is connecting using forticlient or easy connect?
rivsy Lv5Posted 02 Aug 2023 15:13
  
What is the application use by the VPN client to connect?
Jami Ullah Lv2Posted 02 Aug 2023 17:09
  
Where have you configured the SSL VPN configuration either on FortiGate or NGAF? Moreover, also confirm the soft client detail used for this purpose.   
RegiBoy Lv5Posted 07 Aug 2023 15:06
  
You must configure the NGAF to relay the request of specific Vlan
Naomi Posted 07 Aug 2023 15:22
  
Disable the DHCP broadcast of the NGAF
Adonis001 Lv3Posted 07 Aug 2023 15:27
  
If that is a flat network, you must choose only one source of DHCP. It it is the fortigate then disabled the NGAF
isabelita Lv3Posted 07 Aug 2023 15:30
  
Turn on System>Troubleshooting>Global Passthrough and Analysis.
Allow the user to reconnect to the SSL VPN and view the log.
Please share the screenshot with us if possible. You can conceal private information such as your public IP address, for example.
BitCloud Lv3Posted 07 Aug 2023 15:43
  
Check in the NGAF if the VPN traffics are Block.
Natsu Dragneel Lv3Posted 07 Aug 2023 15:53
  
Please use a packet capture and then check thoroughly what causes it.

I Can Help:

Change

Moderator on This Board

11
7
5

Started Topics

Followers

Follow

1
3
5

Started Topics

Followers

Follow

0
4
5

Started Topics

Followers

Follow

67
20
3

Started Topics

Followers

Follow

3
14
3

Started Topics

Followers

Follow

1
137
3

Started Topics

Followers

Follow

Board Leaders