How to install and set up forticlient IPSec VPN in Ubuntu 20.04?

networking 20.04 vpn
44,438

Solution 1

Forticlient is not available through ubuntu repository. You can download (as of now 6.4 version) and install manually by executing below commands in terminal.

wget -c 'https://filestore.fortinet.com/forticlient/downloads/FortiClientFullVPNInstaller_6.4.0.0851.deb' 

sudo dpkg -i FortiClientFullVPNInstaller_6.4.0.0851.deb

Solution 2

I faced this problem recently. On Windows I used Fortinet VPN client but Ubuntu version of their client have no IPSec support (at time of writing this).

For those looking for Ubuntu/Linux Mint 20 VPN client to connect to FortiNET VPN using IPSec, IKEv1, PSK (pre-shared-key) and the extended authentication (XAUTH) with your account and password, I found vpnc the easiest to use via gnome gui. In my case strongswan gnome gui did not work. I think because it uses IKEv2 and I need IKEv1.

# install dependencies
sudo apt-get install vpnc vpnc-scripts network-manager-vpnc network-manager-vpnc-gnome

Note that in vpnc-gnome interface the group id is group name, pre-shared-key is group password. In the advanced tab, look in the windows version of (working) Fortinet VPN client what values are used for the encryption, NAT-traversal and DH group. The names are not identical but the values you should select are. In my case the default values from vpnc gui were not what I needed.

Solution 3

Did you have problems using openfortivpn?

You can install it with:

sudo apt install openfortivpn

then run it from the terminal with:

sudo openfortivpn <host>:<port> -u<username>

Solution 4

Reading this topic, I was able to connect to the "standard Fortigate IKEv1 IPSEC VPN for Mobile client" .

It works with the following parameters if on the Fortigate, the VPN was created using the wizard (and no particular tuning had been done)

So, following this if you are under Linux make it easy to connect the standard IPSEC mobile VPN the Fortigate wizard create.

It can be use where Forticlient Linux is not usable (it do not have IPSEC tab to configure a mobile IPSEC access)

Thanks to Dusan Mijatovic for it previous post on this page.

Here is how to configure :

install network-manager-vpnc-gnome or network-manager-vpnc-kde or network-manager-vpnc depending on your desktop (use yum, apt or whatever packet manager of your distrib or build it from source)

  • open your connection manager and add a new VPN connection
  • Select VPNC for the type of the VPN connexion
  • give a name to your connection
  • fullfill gateway, user & password
  • groupe name = "ipsec group id" = 0 (<= Here you need to put 0)
  • groupe password = "ipsec psk" = yourpsk (<= Here put the PSK)
  • in advanced tab :
    • set tunnel interface name = myvpn-ike
    • Cryptographic methode = Secure (default)
    • NAT-TRAVERSAL = NAT-T if availiable (default)
    • Group DH IKE = Group DH 5
    • PFS (Perfect Forward Secrecy) = Group DH 5
    • Local Port = 0
    • Select disable DPD (tic the box)
    • Let all others parameters empty or to their default values

Save the new connection and simply start it from your desktop connection manager.

You may find a handshake error in logs but it's not a real problem, the connection work.

The error is: "org.gnome.Shell.desktop[7849]: [1176:1192:1022/090523.496193:ERROR:ssl_client_socket_impl.cc(981)] handshake failed; returned -1, SSL error code 1, net_error -202"

Hope it will help Linux user to EASILY connecting FortiGate IPSEC mobile VPN which is automaticaly created by Fortigate wizard. (FortiGate support TAC do not help on this problem, they do not know that there are differences between FortiClientVPN Windows and FortiClientVPN Linux)

Regards

Solution 5

Here is the link of forticlient download page. downlaod from here. Download .deb package and install it using

sudo dpkg -i <debfile name>
Share:
44,438
Thirumal
Author by

Thirumal

Github: M-THIRUMAL

Updated on September 18, 2022

Comments

  • Thirumal
    Thirumal over 1 year

    I am trying to connect to the office VPN but it requires forticlient.

    Not able to find a package for Ubuntu 20.04

    • xenoid
      xenoid almost 4 years
      There is a .deb here. Doesn't work?
  • Thirumal
    Thirumal almost 4 years
    It is not working I tried many times
  • Thirumal
    Thirumal almost 4 years
    It has an option for only SSL-VPN.
  • Amos Folarin
    Amos Folarin over 3 years
    sudo dpkg -i FortiClientFullVPNInstaller_6.4.0.0851.deb ``` Selecting previously unselected package forticlient. (Reading database ... 241197 files and directories currently installed.) Preparing to unpack FortiClientFullVPNInstaller_6.4.0.0851.deb ... Unpacking forticlient (6.4.0.0851) ... dpkg: dependency problems prevent configuration of forticlient: forticlient depends on libappindicator1 (>> 0); however: Package libappindicator1 is not installed. forticlient depends on libgconf-2-4 (>> 0); however: Package libgconf-2-4 is not installed.```
  • goodfellow
    goodfellow over 3 years
    It is not working on 20.04
  • Darryl Williams
    Darryl Williams over 3 years
    You can fix dependency by sudo apt install -f
  • karan sharma
    karan sharma almost 3 years
    This works great, thanks
  • chesterman
    chesterman over 2 years
    And what would be Groud ID/Group Name. I don't see this in my forticlient on windows
  • Admin
    Admin almost 2 years
    I'm trying to do this now - the vpnc create dialog does not allow me to input a password or a group password - the fields are greyed out. Is there a reason for this?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Problem with DNS with OpenVPN on Ubuntu 20.04
Remote desktop access between 2 Ubuntu 20.04 devices over the internet
Send all OpenVPN traffic through proxy or TOR proxy?
ssh: connect to host [ip] port 22: No route to host
How do I setup routing through a PPTP VPN?
/dev/ppp can't be opened
ssh: connect to host port 22: No route to host
How to configure L2TP/IPsec VPN on Ubuntu 18.04 gui?
OpenVPN setup with PIA - Connects but no internet
AEAD Decrypt error: bad packet ID on openvpn using UDP