VPN portal inside or external address

Reply
Highlighted
L4 Transporter

VPN portal inside or external address

Is the VPN portal inside or external address 

Highlighted
Cyber Elite

I think we need a bit more context, but typically external.

Highlighted
L4 Transporter

@Brandon_Wertz @reaper @BPry

External is what I thought. What information do you need? Is there away to verify that it is external?

Highlighted
Cyber Elite

Well in general the service GP provides the portal is going to be beyond/external of the internal side of the firewall.

Highlighted
L4 Transporter

@Brandon_Wertz

you mean most of the time the VPN is going to provide access for people outside of the internal network though be do have a use case of accessing a segrated portion of the internal network using GP , but aside from that one VPN instance most of our VPN users come from the internet/external access

Highlighted
L3 Networker

The VPN portal should be an external IP address or FQDN since the users are located outside, and they use external DNS servers like 8.8.8.8, and TCP/443 is used for communication between GlobalProtect agents and Portals, or GlobalProtect agents and Gateways. Also, UDP/4501 is used for IPSec tunnel connections between the GlobalProtect agents and Gateways.

--
"The Simplicity is the ultimate sophistication." - Leonardo da Vinci.
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!