https://live.paloaltonetworks.com/t5/general-topics/global-protect-to-restrict-certain-source-ip/m-p/279953#M75795 <P>yes, but this is accomplished by creating a security policy</P> <P>&nbsp;</P> <P>you'll need to set up a security rule that allows only your preferred sources/blocks undesirable locations, with destination IP set to your firewall external IP (or the IP used in your GP portal/gateway if different), applications ssl and ipsec and either application-default ports, or custom ports if you changed the default ports in your GP configuration</P> Tue, 30 Jul 2019 08:59:12 GMT reaper 2019-07-30T08:59:12Z https://live.paloaltonetworks.com/t5/general-topics/global-protect-to-restrict-certain-source-ip/m-p/279894#M75788 <P>Can Global protect restrict or only allow certain external public IPs from accessing the VPN?&nbsp;</P> Tue, 30 Jul 2019 03:24:02 GMT https://live.paloaltonetworks.com/t5/general-topics/global-protect-to-restrict-certain-source-ip/m-p/279894#M75788 YuWeiLau 2019-07-30T03:24:02Z https://live.paloaltonetworks.com/t5/general-topics/global-protect-to-restrict-certain-source-ip/m-p/279953#M75795 <P>yes, but this is accomplished by creating a security policy</P> <P>&nbsp;</P> <P>you'll need to set up a security rule that allows only your preferred sources/blocks undesirable locations, with destination IP set to your firewall external IP (or the IP used in your GP portal/gateway if different), applications ssl and ipsec and either application-default ports, or custom ports if you changed the default ports in your GP configuration</P> Tue, 30 Jul 2019 08:59:12 GMT https://live.paloaltonetworks.com/t5/general-topics/global-protect-to-restrict-certain-source-ip/m-p/279953#M75795 reaper 2019-07-30T08:59:12Z