When I connect both to Fortinet SSL VPN and to Cisco VPN at the same time, I cannot use network provided by Forticlient (i.e. my PC cant see remote hosts, ping timeouts). Cisco VPN network works fine though. When I disconnect Cisco VPN, I can ping network resources again, can connect via RDP ans so on. Reproducing in 100% cases, very easy to catch (but not to find underlying issue with skills I have).
Microsoft Windows 10 Pro x64 Forticlient 5.4.0.0780 Cisco Systems VPN Client 5.0.07.0440
My setup is mostly identical to what I had in previous Windows versions. But there is one important difference related to CiscoVPN. It doesn't work in 10 out of the box so I followed this guide: http://www.gleescape.com/posts/2917.
Installed Sonic VPN (it added DNE filter to all network adapters).
Changed registry key "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CVirtA" as described (removed '@oem8.inf,%CVirtA_Desc%;' from beginning).
Same result with disabled Firewall and HIPS (provided by Comodo). Windows Firewall is always disabled. I tried to make routing table same as without Cisco VPN (it adds routes when connected) bu it didn't help.
This problem is relevant only for Windows 10 (before and after Threshold 2). I had no problems with Windows 7 and Windows 8.1. Also I had to reinstall Windows 10 once but problem reoccurred after clean install (i.e. it didn't ever work on Windows 10 for me). I browsed sqlite db "C:\Program Files (x86)\Fortinet\FortiClient\logs\fclog.dat". There are no entries for the time when I reproduce issue. There are no relevant windows events (I checked system and applications log). The only event related to network:
I also tried to check network packets with WireShark but this is beyond my knowledge.
I don't know what else to check so I will appreciate any suggestions where to dig. I am not an expert with network technologies and VPN in particular but can understand instructions and use required tools. Thanks in advance.
Site to Site IPSec VPN with Dynamic IP Endpoint is typically used when we have a branch sites which obtains a dynamic public IP from the Internet ISP. For example an ADSL connection.One important note is that Site-to-Site VPN with Dynamic remote routers P...
On R1, configure a key ring that defines the peer R3:Address: 184.108.40.206Local and remote pre-shared key: cisco R1(config)#crypto ikev2 keyring KRR1(config-ikev2-keyring)# peer R3R1(config-ikev2-keyring-peer)# address 220.127.116.11R1(config-ikev2-keyring-pee...
This document shows how to use the Port Radius NAS PORT Id Attribute in a compound condition to control access with 802.1X.A user jdoe is allowed to access the network only through the physical port FastEthernet 0/1 of the switch and the user jwhite is al...
This document provides a configuration example of Security Assertion Markup Language (SAML) Authentication on FTD managed over FDM. The configuration allows Anyconnect users to establish a VPN session authenticating with a SAML Identity Serv...
DMVPN Dual Hub Dual Cloud Pros and ConsProsNo single point of failureQuick failover if routing protocols are tunedLoad balancing is easyTraffic engineering is easyEasy to work with multiple ISPsConsNeed 2 tunnels per spokeConfiguration is more complicated...