Fortigate SSL VPN not working

If the fortigate memory goes too high, and the device drops to conserve mode then the SSL VPN may stop working correctly, or at all.

This is usually happens when the fortigate memory is above 75%.

To solve this:

1. Run command: diagnose system top 10 or diag sys top 10 or get system performance top. The command will give you the top memory usage processes

For example:

xxxxx # diag sys top 10

Run Time:  121 days, 6 hours and 5 minutes

8U, 91S, 1I; 4031T, 1966F, 148KF

 initXXXXXXXXXXX        1      S       0.0     0.2

         cmdbsvr       38      S       0.0     0.5

(The most left number is the PID and the most right number is the current RAM usage)

2. If you see among the processes a process name reported or a process name forticron then kill them
3. To kill those processes run diagnose system kill 9 <pid_int> or diag sys kill 9 <pid_int>
4. Verify that the fortigate memory usage gone below 75%.
5. Test connection with VPN.

http://docs-legacy.fortinet.com/fadc/4-1-0/index.html#page/FortiADC_Handbook/looking_for_system_intensive_processes.html

http://pack3tlife.com/2014/08/26/fortinet-restart-ssl-vpn-process/

PowerShell Script to Monitor Servers online Status

Script-Servers-OnLine-Monitor

Are my servers online? – PowerShell.com – PowerShell Scripts, Tips, Forums, and Resources.