An employee needs to connect to the office through a high-latency internet connection.
Which SSL VPN setting should the administrator adjust to prevent SSL VPN negotiation failure?
An employee needs to connect to the office through a high-latency internet connection.
Which SSL VPN setting should the administrator adjust to prevent SSL VPN negotiation failure?
The login-timeout setting should be adjusted to prevent SSL VPN negotiation failure when dealing with a high-latency internet connection. This is because the login process can take longer in high-latency situations, and increasing the login timeout allows more time for the client to complete the necessary steps of the SSL VPN negotiation without timing out.
B. login-timeout FortiGate Infrastructure 7.2 Study Guide (p.222): "When connected to SSL VPN over high latency connections, FortiGate can time out the client before the client can finish the negotiation process, such as DNS lookup and time to enter a token. Two new CLI commands under config vpn ssl settings have been added to address this. The first command allows you to set up the login timeout, replacing the previous hard timeout value. The second command allows you to set up the maximum DTLS hello timeout for SSL VPN connections." Reference and download study guide: https://ebin.pub/fortinet-fortigate-infrastructure-study-guide-for-fortios-72.html
https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-SSL-VPN-Troubleshooting/ta-p/189542
B is correct, FortiGate infrastructure 7.2 page 222
la respuesta es B: Latency or poor network connectivity can cause the login timeout on the FortiGate. In FortiOS 5.6.0 and later, use the following commands to allow a user to increase the SSL VPN login timeout setting.
B is correct, FortiGate infra 7.2 page 222
The answer is B
B is a valid response