Jul 18, 2015
Cookbook | FortiGate / FortiOS 5.4.0 | Fortinet Set VPN Type to SSL VPN, set Remote Gateway to the IP of the listening FortiGate interface (in the example, 172.20.121.46). Select Customize Port and set it to 10443. Select Add. Connect to the VPN using the SSL VPN user's credentials. You are able to connect to the VPN tunnel. On the FortiGate, go to Monitor > SSL-VPN Monitor. The user is CLI Reference | FortiGate / FortiOS 6.0.0 | Fortinet set idle-timeout {integer} SSL VPN disconnects if idle for specified time in seconds. range[0-259200] set auth-timeout {integer} SSL-VPN authentication timeout (1 - 259200 sec (3 days), 0 for no timeout). range[0-259200] set login-attempt-limit {integer} SSL VPN maximum login attempt times before block (0 - 10, default = 2, 0 = no limit). range SSL VPN with certificate authentication – Fortinet Cookbook
Attackers are targeting vulnerable Fortigate and Pulse
Cookbook | FortiGate / FortiOS 6.2.0 | Fortinet Go to VPN > SSL-VPN Portals to edit the full-access portal. This portal supports both web and tunnel mode. Disable Enable Split Tunneling so that all SSL VPN traffic goes through the FortiGate. Configure SSL VPN settings. Go to VPN > SSL-VPN Settings. Select the Listen on Interface(s), in this example, wan1. Set Listen on Port to 10443. Multiple Remote SSL VPN on a Fortigate unit or vdom Oct 08, 2015
Fortigate Fortios 5.0 SSL VPN Configuration
Cookbook | FortiGate / FortiOS 6.2.0 | Fortinet Go to VPN > SSL-VPN Portals to edit the full-access portal. This portal supports both web and tunnel mode. Disable Enable Split Tunneling so that all SSL VPN traffic goes through the FortiGate. Configure SSL VPN settings. Go to VPN > SSL-VPN Settings. Select the Listen on Interface(s), in this example, wan1. Set Listen on Port to 10443. Multiple Remote SSL VPN on a Fortigate unit or vdom Oct 08, 2015 Product Downloads | Fortinet Product Downloads | Support