Hello,
I have a client which is behind a restrictive Fortigate firewall. I've had to use TCP over port 443 and it works, but the connection drops frequently. I thought that the Fortigate detects VPN traffic and drops it, but then I noticed that if I increase OpenVPN ping parameter to 3600, the connection remains up for an hour or so. So it must have something to do with OpenVPN keepalive mechanism, which I must admit I am puzzled with. For one thing, it is not clear from the manual if keepalive can be disabled, and what are the consequences (do I risk losing the connection permanently). Also, are ping attempts logged on either side? I can't see anything about it in the log. Alternatively, how do I capture just the ping packets with tcpdump?
Client behind Fortigate firewall
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.