topic Clientless VPN and HTTP Redirects in GlobalProtect Discussions https://live.paloaltonetworks.com/t5/globalprotect-discussions/clientless-vpn-and-http-redirects/m-p/348487#M406 <P>Hi&nbsp;</P><P>I am attempting to use the&nbsp;Clientless VPN feature to give access to an internal web proxy server but have an issue where the Palo Alto is not rewriting URL's from a HTTP 301 Redirect.&nbsp;&nbsp;</P><P>&nbsp;</P><P>We use&nbsp;inginx/vouch as the proxy server to provide single sign on functionality to our web applications. Part of the process for this authentication is that if a non-authenticated user hits inginx, the HTTP session is handed off to vouch that issues a HTTP 301 redirect to the client browser which contains another internal URL where the user can perform their log in. The issue is this internal URL is not re-written by the Global Protect portal so the user's browser is performing a name lookup and trying to go over the Internet to access the URL which is internal to our network only.&nbsp;</P><P>&nbsp;</P><P>Does anyone know if the clientless VPN supports rewriting of&nbsp;HTTP 301 Redirect?</P><P>&nbsp;</P><P>Thanks</P><P>Scott</P><P>&nbsp;</P><P>&nbsp;</P> Fri, 11 Sep 2020 08:09:43 GMT scottjackson 2020-09-11T08:09:43Z Clientless VPN and HTTP Redirects https://live.paloaltonetworks.com/t5/globalprotect-discussions/clientless-vpn-and-http-redirects/m-p/348487#M406 <P>Hi&nbsp;</P><P>I am attempting to use the&nbsp;Clientless VPN feature to give access to an internal web proxy server but have an issue where the Palo Alto is not rewriting URL's from a HTTP 301 Redirect.&nbsp;&nbsp;</P><P>&nbsp;</P><P>We use&nbsp;inginx/vouch as the proxy server to provide single sign on functionality to our web applications. Part of the process for this authentication is that if a non-authenticated user hits inginx, the HTTP session is handed off to vouch that issues a HTTP 301 redirect to the client browser which contains another internal URL where the user can perform their log in. The issue is this internal URL is not re-written by the Global Protect portal so the user's browser is performing a name lookup and trying to go over the Internet to access the URL which is internal to our network only.&nbsp;</P><P>&nbsp;</P><P>Does anyone know if the clientless VPN supports rewriting of&nbsp;HTTP 301 Redirect?</P><P>&nbsp;</P><P>Thanks</P><P>Scott</P><P>&nbsp;</P><P>&nbsp;</P> Fri, 11 Sep 2020 08:09:43 GMT https://live.paloaltonetworks.com/t5/globalprotect-discussions/clientless-vpn-and-http-redirects/m-p/348487#M406 scottjackson 2020-09-11T08:09:43Z