This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
About GlobalProtect Discussions
Welcome to the GlobalProtect discussion area! Here, you can engage in conversations about GlobalProtect, explore new insights, and stay updated on ongoing discussions. Check back regularly for the latest updates and community insights on GlobalProtect.

Discussions

Start a conversation

Connect Before Logon - Network Sign Option Not Available

We are stuck with Network Sign option not getting visible on Windows logon after installing GP Client ver 5.2.5.We expected the GP ver 5.2.x and above to create registry automatically as mentioned in following URL. Unfortunately , they are not getting created. https://docs.paloaltonetworks.com/globalprotect/10-0/globalprotect-admin/globalprotect...

Nischal by L2 Linker
  • 3413 Views
  • 0 replies
  • 1 Likes

split DNS

Hello We need to test MS-Teams. hence I did a few tests with split DNS. The published manuals (e.g. https://live.paloaltonetworks.com/t5/general-articles/globalprotect-optimizing-office-365-traffic/ta-p/319669) are fine, as long as the VPN gateway is "near". In our case the user is located in South Africa, and the VPN gateway is in northern Euro...

GP connect before logon .

Has anyone configured connect before logon .Would need steps to configure this .I have a few queries as well .Do we need pre-logon user agent config for this or no ? The registry values found in this document are not exact to what i see on windows .Any help is appreciated . I have added this registeryPanGPS.exe -registerplap Rest options are not...

GlobalProtect with Azure MFA setup

Has anyone had any luck setting up MFA on the Palo Alto with Global Protect with Microsoft Azure MFA (Hybrid) I tried opening a ticket with the support team and they said they had no clue how to setup but could support it if broken and told me a "Sales" Engineer would reach out to me sometime that day. That was 4 business days ago. I have been ...

Multiple gateways with multiple preferred IPs

We have Global Protect configured at site A - HQ, and we use preferred IP assignment. All good here. We’re deploying Global Protect at site B. We intend to use both gateways for HA. Site A and B are connected. My question is - can we use preferred IPs for both gateways – over different subnets? Any clarification appreciated. Thanks.

GlobalProtect machine pre-logon coverted into a user connection without user certificate in device

Hi there, we are facing a weird situation with GlobalProtect pre-logon connections. We have some laptops with machine certificate only (they do not have user certificates deployed).We want them to connect using this machine certificate, as "pre-logon", so they got limited/specific access to some company resourcesThey are able to establish GP VPN...

10.png
11.png
9.png
8.png
MarcelST by L3 Networker
  • 1945 Views
  • 0 replies
  • 0 Likes

DNS logging with globalprotect

Hi, Wondered what people's experience/advise is on the following. We have palo alto VM series in azure which we are using globalprotect on. At the moment I am NATing the globalprotect VLAN to the IP address of the firewall, but in doing this I am finding that the DNS log traffic from our DCs is limiting in that all of the requests are appearing ...

Internal Host Detection Issue

Hi there, I have a question on the correct use of internal host detection and internal/external gateway config. The behaviour I want to achieve is when a client is internal to the LAN GlobalProtect will detect this and not bring up the tunnel and pass all network traffic transparently out the LAN connection, as if it wasn’t there. When external,...

Help Locking Down Global Protect Access

I'm switching our user over to the Always On VPN via the Portal App Config that auto connects the vpn and requires it for network access. The issue is I want to prevent my users from connecting via personal PC. I've set the Client Authentication to require User Credentials and Certificate. When I delete the certificate that I set up I get the w...

Walt by L1 Bithead
  • 2455 Views
  • 1 replies
  • 0 Likes

Global Protect client showing Gateway name instead of Best Available

In my companies environment we have about 12 Gateways. Most of our machines have GP 5.0.8-4 installed. With no preferred gateway selected, I've seen a few cases where the GP client shows the gateway it's connected to instead of Best Available. From what I've seen the norm seems to show Best Available and you have to go into the GP client setting...

popeja by L2 Linker
  • 4929 Views
  • 3 replies
  • 0 Likes

Remote Access through IPSEC?

Hello,I am looking at setting up a remote access VPN on a PA220. The idea, however, is that the user would have concurrent access to a server at the PA220's site as well as servers at another site, that the PA220 has a IPSEC VPN with.In case this isn't clear.... the WAN interface of the PA220 would service both the remote access vpn and the ipse...

GlobalProtect with Windows 7 VirtualBox VM setup

One of my clients has recently switched their VPN setup from Checkpoint over to GlobalProtect, and it's completely broken our Virtualbox setup. Our PCs run Windows 10 natively, and then we use VirtualBox to run Windows 7 VMs to support some legacy software.When I go to install GlobalProtect, it installs fine on the Windows 10 Host. However, if I...

Automate GP VPN connection in Python??

I was asked to use Python to automate processes that download files from multiple servers. In order to connect to the servers, I must connect to the Global Protect VPN first. That said, in order to automate the process, I must also automate the VPN connection/disconnection. I tried to search for information about how to automate the GP VPN conne...

Uninstall option for Global Protect

Hi Team, We have PA-500 with Pan-Os 8.1.17 and Global Protect Version -5.1.3 there is an option in App configuration where we can uninstall Global Protect allow with password. Is it possible where we can use the feature for pan-os 8.1 Thanks and regards,Gideon.K

  • 2063 Posts
  • 68 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks