NM-fortisslvpn adds duplicate routes and also adds routes for the vpn gateway to go through the vpn itself.
ip route Before fortivpn
default via 192.168.1.1 dev wlo1 proto dhcp src 192.168.1.9 metric 600
192.168.1.0/24 dev wlo1 proto kernel scope link src 192.168.1.9 metric 600
ip route After fortivpn
default dev ppp0 proto static scope link metric 50
default via 192.168.1.1 dev wlo1 proto dhcp src 192.168.1.9 metric 600
$VPN_GATEWAY dev ppp0 proto kernel scope link src $VPN_IP
$VPN_GATEWAY via 192.168.1.1 dev wlo1 proto static metric 50
$VPN_GATEWAY dev ppp0 proto kernel scope link src $VPN_IP metric 50
192.168.1.0/24 dev wlo1 proto kernel scope link src 192.168.1.9 metric 600
192.168.1.1 dev wlo1 proto static scope link metric 50
Routes are ok when I use openfortivpn cli.
openfortivpn version: 1.21.0
NetworkManager-fortisslvpn-1.4.0-5.fc39.x86_64
Distro - Fedora Silverblue 39