Wednesday, May 27, 2015

Forticlient VPN SSL Stops at 40%




It is very strange your computer can not manage login to VPN via forticlient. you try connect to VPN SSL Fortigate and stop at 40% , and come out message error "Unable to establish the VPN connection. The VPN server may be unreachable (-5)".

There is two ways fix this problem. 


    Change your MTU interface computer via command prompt
      • Click the "Windows Button" on the task bar.
      • Click "All Programs".
      • Click "Accessories".
      • Right Click on "Command Prompt" then click "Run as adminstrator".
      • Then type "netsh interface ipv4 show subinterface".
      • Press Enter
              you will see a list of network interface

              Note :
    • If your connection using wireless then change MTU on "Wirelless Network Connection"
    • If you connection using cable then change MTU on "Local Area Network"

      • Type "netsh interface ip4 set subinterface wireless network connection mtu=1300 store=persistent"
      •  Press Enter and restart your computer
      Change your interface MTU computer using Register Editor
        • Open regedit as an administrator account
        • Navigate to HKLM\System\CurrentControlSet\Services\tcpip\parameters\interface\[Choose the interface in the question] (Do this by checking the correct IP address is in the setting under this key for the adapter you are configuring)
        • Once your are in the correct key for your interface, right-click and select new DWORD value (32bit)
        • Call it MTU
        • Change the Hexadecimal value equal to the setting 514
        •  Close the Register Editor window and restart your computer

      Now you able to login VPN SSL Fortigate without any problem.

      63 comments:

      1. Thank you for advice and VPN client.
        Visit this site.
        top10-bestvpn.com

        ReplyDelete
      2. This comment has been removed by the author.

        ReplyDelete
      3. Thank you.Cool advice for VPN client.Nice manual and configuration for it.
        http://10webhostingservice.com/

        ReplyDelete
      4. Unfortunately did not resolve my problem. Still get 40, server not found error

        ReplyDelete
      5. Hi Luke,
        did you already change MTU for the correct interface? please try do ping [ip address of your VPN SSL] -l 1400 -f, if you get result "Packet needs to be fragmented but DF set."
        and please try change the MTU with 1400 not 1300

        ReplyDelete
      6. That was very helpful , working now.. :)

        ReplyDelete
      7. I have the same problem but your sugestion didn't solve my problem :(

        ReplyDelete
      8. The fix for me was:

        Control Panel > Internet Options > Advanced > Security ensure TLS 1.1 and TLS 1.2 are enabled.

        ReplyDelete
        Replies
        1. Thanks Brett it worked for me god bless you

          Delete
        2. Thanks Brett...your are a master.

          Delete
        3. This solution worked for me. After trying a bunch stuff.
          Thanks!!!

          Delete
        4. Alhamdulillah.. thanks brother

          Delete
        5. FInally this solved my problem on a very monday morning, Thank you.

          Delete
        6. THANK YOU SO MUCH... I've googled everything there is and this is solution of this problem. You are the best!!!

          Delete
        7. this solution worked for me! I haven't even attempted Misono's solution.
          Thanks Brett!

          Delete
        8. That was the solution, after 3 hours and a terrible Fortinet Debug Log file!!!

          Delete
        9. Hi We tryed this option , it work on one machine , and other mchine its greyed ticked ,still not working.

          Please help.

          Delete
        10. This comment has been removed by the author.

          Delete
        11. Thanks a lot..working super great

          Delete
        12. Thanks Man!!! Working now!!

          Delete
        13. Wow... Thanks a lot.... working well

          Delete
      9. Thanks Brett Darling !! Excellent

        ReplyDelete
      10. Thank you Brett _ VPN started working with your suggestion.

        ReplyDelete
      11. Thank you, Brett Darling!

        "Control Panel > Internet Options > Advanced" and there a reset of all settings did it for me! :-)

        ReplyDelete
      12. In have changed the mtu of my wireless connection interface to 1300/.Still no luck,I am facing the same issue.

        (Canopy 64bit) C:\WINDOWS\system32>netsh interface ipv4 show subinterface

        MTU MediaSenseState Bytes In Bytes Out Interface
        ------ --------------- --------- --------- -------------
        1300 1 17372466 1266982 Wireless Network Connection
        1500 5 0 0 Local Area Connection* 2
        4294967295 1 0 22442 Loopback Pseudo-Interface 1
        1500 5 0 0 Bluetooth Network Connection
        1500 5 0 0 Local Area Connection* 3
        1500 5 0 0 Ethernet
        1500 5 0 0 Local Area Connection

        ReplyDelete
      13. Brett Darling: Thanks!!! Its works!

        ReplyDelete
      14. We faced a similar issue, however our fix was to enable the TLS 1.1. and 1.2 in the advanced options of Internet Explorer. Once we did that, users with Windows 7 could connect to Forticlient 5.4.1 or below.

        ReplyDelete
      15. We faced a similar issue, however our fix was to enable the TLS 1.1. and 1.2 in the advanced options of Internet Explorer. Once we did that, users with Windows 7 could connect to Forticlient 5.4.1 or below.

        ReplyDelete
      16. yes finally it worked for me. after enabling the TLS 1.1 and 1.2

        ReplyDelete
      17. My IE work offline make problem.

        ReplyDelete
      18. Thanks, great article and it is really helpful! I found the endsolution
        http://www.layer8.one/fortigate-sslvpn-connecting-40-unable-to-establish-the-vpn-connection-the-vpn-server-may-be-unreachable-5/

        ReplyDelete
      19. i tried TLS 1.1. and 1.2 in and its worked
        thanks for sharing

        ReplyDelete
      20. the TLS 1.1 and 1.2 are greyed out please help.

        ReplyDelete
        Replies
        1. TLS Settings are ticked but grayed out , and still can connect. Please help.

          Delete
        2. try creating New USer profile for your windows login with Administrator rights and Done !!
          it worked for me

          Delete
      21. Hello,
        If nothing goes well, simply create New USer profile for your windows login with Administrator and Done !!
        Use VPN in new profile

        Thanks

        ReplyDelete
      22. MTU not available in my lap

        ReplyDelete
      23. Whereas if you are using a free VPN account you can generally use only a small amount of data. why a vpn

        ReplyDelete
      24. I dont have 1300 as an option, Im confused by what to change

        ReplyDelete
      25. QuickBooks Mac has too many errors, dial QuickBooks Mac number 1-800-961-9635 for support, now QuickBooks Mac Support Phone Number experts present here to solve this error with quick solution.

        ReplyDelete
      26. Saya mau update versi firmware terbaru fortigate, apakah setelah selesai update system configurasi akan hilang apa tetap ada.
        Terimakasih

        ReplyDelete
      27. And it's will be a thing to make that work, will VPN help with that?

        ReplyDelete
      28. It will, depends on how good it is, check for the best ones here bestvpnrating.cоm

        ReplyDelete
      29. I found so many interesting stuff in your blog especially its discussion. Really it's great article. Keep it up.Mcafee UK | Mcafee Phone Number

        ReplyDelete
      30. This comment has been removed by the author.

        ReplyDelete
      31. Aol Desktop Gold Download

        If you are AOL desktop gold user and whenever you face trouble with this software,
        you can get help on AOL desktop gold customer helpline number +1-800-684-5649 . Yes, this service is
        started by USA best support service provider for AOL desktop gold users.
        This service is 24X7 reachable and you will get the assistance of trained experts on this number.

        AOL Desktop gold Download

        ReplyDelete
      32. Outlook Email Customer Service
        Outlook Email Customer Service is a tech support service which provides support for all technical issues which you are facing in your Outlook emails.Feel free to call +1800-284-6979 our outlook support team Which provide 24x7 outlook email support service in Usa.
        Outlook Email Customer Service

        ReplyDelete