On all FortiGate models, SMBv2 is enabled by default for SSL VPN.
Client PCs can access the SMBv2 server using SSL VPN web-only mode.
This version adds two new commands under config vpn ssl web portal
.
Sample configuration
You must use the CLI to use this feature.
To configure SMBv2:
- Run
config vpn ssl web portal
:config vpn ssl web portal edit portal-name set smb-min-version smbv2 set smb-max-version smbv3 end
- After running
config vpn ssl web portal
, configure SSL VPN and firewall policies as usual. - Then connect to the SSL VPN web portal and create an SMB bookmark for the SMBv2 server.
- Click the bookmark to connect to the SMBv2 server.
- In the FortiGate, use package capture to verify that SMBv2 works: