OpenFortiGUI


OpenFortiGUI is an open-source VPN-Client to connect to Fortigate VPN-Hardware. It is based on openfortivpn and adds an easy to use and nice GUI on top of it, written in Qt5.

Unlike other VPN-clients it is also possible to connect to multiple VPN-destinations  simultaneously. It is an replacement for the closed-source Forticlient – SSLVPN Client.

Important: Since version 0.2.12 the encoding of AES-encrypted passwords has changed because of a change of the upstream AES-library. You must reset all passwords for your VPN-profiles again to work, sorry for the inconveniences.

Features include:

  • Qt5 GUI, based on 5.5
  • openfortivpn library built-in, no separate download required
  • All settings saved in text-files, so easy to share, passwords saved AES-encrypted (key can be defined as needed)
  • VPNs divided into local and global sections (readonly, useful for deployments to many users)
  • VPN-groups can be defined to start groups of VPNs at the same time
  • Trayicon with fast access to start/stop VPNs and groups
  • Multiple VPN connections possible simultaneously
  • Certificate and user/password auth supported
  • English and german language (sorry for german screenshots 😉 )

Source: https://github.com/theinvisible/openfortigui

Prebuild packages are available for following Distros:

Ubuntu 16.04:

OpenFortiGUI 0.2.12 32bit
OpenFortiGUI 0.2.12 64bit

Debian 9:

OpenFortiGUI 0.2.10 64bit

You can also use our apt mirror, for instructions see: https://styrion.at/apt/

Quick instruction to build from source:

  1. Install DEV-tools (on Ubuntu: build-essential, qt5-default, libssl-dev)
  2. git clone https://github.com/theinvisible/openfortigui.git
  3. cd openfortigui && git submodule init && git submodule update
  4. cd qtinyaes && git submodule init && git submodule update
  5. cd .. && qmake && make -j8
  6. openfortigui binary is ready

Used software/libraries/resources:

12 thoughts on “OpenFortiGUI

  1. nalbyuites

    Thank you for the hard work! openfortiGUI 0.2.10-dev is working fine for me on Solus OS.

    Reply
  2. Christian

    Working great for me on KDE Neon. One wish, an option to close/minimize to system tray. Otherwise, just perect! Thank you so much!

    Reply
  3. Christian

    After having used it for some time I have found that it doesn’t close the process when I close the application, so I will have to kill it manually before I am able to open it again. That would be good to have fixed.

    Reply
  4. Sven

    We have 2FA and the GUI version does not support that yet, something you will implement?
    Thanks in advance!

    Reply
    1. Ti Post author

      You are right, this is not implemented right now. I am working on this, but its quite hard to “hook” into the existing openfortivpn code without changing too much code. But stay tuned, updates will come.

      Reply
  5. b.f.

    Hi,
    thanks for great app. I’ve found one problem – after Disconnect it does not delete added route (if configured in Options tab -> “Set routes”).

    Reply
  6. Eric S. Smith

    Speaking of features that might be hard to implement, there doesn’t seem to be support for HTTP proxies as in forticlientsslvpn’s “Global settings”.

    Reply
  7. luis amaya

    openfortigui its an incredible software, just need some fixes. As they already commented you , it doesnt delete added routes when the quitting connection is established by the VPN.
    Thank you !!! cheers

    Reply
  8. fprietog

    It works for my work connection with a lil problem.

    Using “FortiClient SSLVPN 4.0.2333”, after negotiation three lines were added to my resolv.conf file:

    search spaced.dsd
    nameserver 10.71.xxx.xxx
    nameserver 10.71.xxx.xxx

    Using “openFortiGUI 0.2.10-dev” only the nameserver lines are added to resolv.conf, lacks the search line:

    nameserver 10.71.xxx.xxx
    nameserver 10.71.xxx.xxx

    So connection works but I need to apply the spaced.dsd suffix manually to machine names/intranet links. Not so handy 🙁

    Thanks and best regards.

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *