- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
Enhanced Security Measures in Place: To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.
03-21-2013 08:18 AM
Hello,
we want to include a (external or internal) website via iframe in the welcome page. My test HTML site:
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Frameset//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-frameset.dtd">
<HTML>
<HEAD>
<TITLE>Palo Alto Networks - GlobalProtect Welcome Page</TITLE>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<link rel="stylesheet" type="text/css" href="/styles/falcon_content.css?v=@@version">
<style>
td {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-weight: bold;
color: black; /*#FFFFFF; */
}
.msg {
background-color: #ffff99;
border-width: 2px;
border-color: #ff0000;
border-style: solid;
padding-left: 20px;
padding-right: 20px;
max-height: 150px;
height: expression( this.scrollHeight > 150 ? "150px" : "auto" ); /* sets max-height for IE */
overflow: auto;
}
.alert {font-weight: bold;color: red;}
</style>
</HEAD>
<BODY bgcolor="#F2F6FA">
<div align="center">
<h1>Palo Alto Networks - GlobalProtect Welcome Page</h1>
<h1>VPN-LAB1</h1>
<iframe src="http://www.whatismyip.com" width="70%" height="400" name="Test">
</iframe>
</div>
<div id="formdiv">
</div>
</BODY>
</HTML>
With this config it shows me just a white frame without any content....
Is some one familiar with this kind of confgiuration?
THX
04-17-2013 06:50 AM
Hello,
finally i got an information from PaloAlto: iframes are not supported! Feature request is now open...
THX
03-22-2013 12:48 AM
Any idea how to include a frame/content in the welcome page?
03-22-2013 02:28 AM
Your code works in an slightly older firefox so it seems valid.
Which browser do you use and do you have any plugins installed for that (that could block this kind of cross-site loading)?
Or do you perhaps use https for this page (where your code shows), im thinking if iframe in your browser perhaps is blocked when using https?
03-22-2013 03:06 AM
Hello mikand,
we want to use the iframe in the welcome page of the GlobalProtect Client.
Have Firefox and IE 8/9 (WIN XP/7) installed on the client. But it shows just a white frame without any content. HTTPS is not being used.
Hopefully there's a way to include frames into the welcome page.
03-22-2013 03:18 AM
Just to verify... the code in your first post in this thread is from when you use "show source" in your browser?
Im thinking if something went lost in translation when you inserted your code into the PA device or for that matter when the PA device is parsing this code before returning it to the client?
03-22-2013 03:24 AM
Hello,
this code is the original one from PA. I exported the welcome page, modified it (see in the first post - the red letters) and then import it back. Its not the code of "view source"....
03-26-2013 05:09 AM
"When a webpage is loading an iframe, it displays a white background until when the iframe’s page is loaded". This is what happen with the first source code i posted.
Tried another html code:
<?xml version="1.0"?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1"/>
<style>
div{background-color:red; padding:5em;}
</style>
</head>
<body>
<div>
<iframe style="visibility:hidden;" onload="this.style.visibility = 'visible';" src="http://www.it-things.com" ></iframe>
</div>
</body>
</html>
With this code i can see, that GlobalProtect doesn't try to load the welcome page iframe...
03-26-2013 11:49 PM
Could you verify with tcpdump or by running live http header or similar plugin within your browser how the http headers that are being sent towards your client looks like?
Im thinking if any of Security Headers on the Top 1,000,000 Websites: March 2013 Report could be a cause of this behaviour?
03-27-2013 05:30 AM
Hello,
find in the attachment the live http log. Used my firefox.
IE and Firefox don't have any problems to display the HTML code (the last i sent). The GP Agent Welcome Window is the problem. It doesn't matter if i insert any internal oder external website - it doesn't want to load the iframe.
03-27-2013 06:30 AM
Hi,
just sniff the traffic with wireshark during the client connects with GP and the welcome page appears. No any HTTP request are made. So it seem like the welcome page is a offline thing....Sadly! Or PaloAlto blockes any content loading in the Welcome/Help Page....really sadly...
03-28-2013 02:25 PM
Did you contact support@ yet regarding this?
Because if you dont see anything odd in the headers (both from the file PA sends you and the file the server sends you) then we can rule that part out.
04-04-2013 01:03 AM
Support is in contact. Need to wait for a response.
04-17-2013 06:50 AM
Hello,
finally i got an information from PaloAlto: iframes are not supported! Feature request is now open...
THX
03-02-2021 01:55 PM
Was this feature ever added? I can see that iframe connections are still being refused to the WebUI. Could it have been implemented as a configuration option?
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!