Description
This article describes the minimal configuration needed to display options to download both Windows and Mac FortiClient packages from FortiGate Dashboard or from SSLVPN portal itself.
FortiClient SSLVPN package is not part of the FortiOS image, but the latest image is automatically downloaded directly from FortiGuard.
FortiClient SSLVPN package is not part of the FortiOS image, but the latest image is automatically downloaded directly from FortiGuard.
Solution
Minimal Configuration
1. At least one interface needs enabled option listen-forticlient-connection:
2. The given unit needs to have as well connectivity to update.fortiguard.net
Verification
Wrong or incomplete configuration with missing option for download:
Valid configuration where options to download Win and Mac client is shown in portal:
Information about package version can be seen in GUI under the FortiGuard section:
Verification that update.fortiguard.net is reachable
1. At least one interface needs enabled option listen-forticlient-connection:
config system interface
edit "port1"
set vdom "root"
set ip 10.108.16.65 255.255.252.0
set allowaccess ping https ssh http telnet fgfm
set listen-forticlient-connection enable
next
end
2. The given unit needs to have as well connectivity to update.fortiguard.net
Verification
Wrong or incomplete configuration with missing option for download:
Valid configuration where options to download Win and Mac client is shown in portal:
Information about package version can be seen in GUI under the FortiGuard section:
Verification that update.fortiguard.net is reachable
FGVMDH-56# exe ping update.fortiguard.net
PING fds1.fortinet.com (208.91.112.68): 56 data bytes
64 bytes from 208.91.112.68: icmp_seq=0 ttl=49 time=182.5 ms
64 bytes from 208.91.112.68: icmp_seq=1 ttl=49 time=181.1 ms
64 bytes from 208.91.112.68: icmp_seq=2 ttl=49 time=180.1 ms
^C
--- fds1.fortinet.com ping statistics ---
3 packets transmitted, 3 packets received, 0% packet loss
round-trip min/avg/max = 180.1/181.2/182.5 ms
