If the fortigate memory goes too high, and the device drops to conserve mode then the SSL VPN may stop working correctly, or at all.
This is usually happens when the fortigate memory is above 75%.
To solve this:
- Run command: diagnose system top 10 or diag sys top 10 or get system performance top. The command will give you the top memory usage processes
For example:
xxxxx # diag sys top 10
Run Time: 121 days, 6 hours and 5 minutes
8U, 91S, 1I; 4031T, 1966F, 148KF
initXXXXXXXXXXX 1 S 0.0 0.2
cmdbsvr 38 S 0.0 0.5
(The most left number is the PID and the most right number is the current RAM usage)
- If you see among the processes a process name reported or a process name forticron then kill them
- To kill those processes run diagnose system kill 9 <pid_int> or diag sys kill 9 <pid_int>
- Verify that the fortigate memory usage gone below 75%.
- Test connection with VPN.
http://pack3tlife.com/2014/08/26/fortinet-restart-ssl-vpn-process/