This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
About GlobalProtect Discussions
Welcome to the GlobalProtect discussion area! Here, you can engage in conversations about GlobalProtect, explore new insights, and stay updated on ongoing discussions. Check back regularly for the latest updates and community insights on GlobalProtect.

Discussions

Start a conversation

Several client authentication in a Gateway

Hi, we have a PA-850 running 10.1.8 firmware. We currently use GlobalProtect VPN using Symantec VIP authentication via RADIUS. We want to progressively migrate the authentication to Azure AD MFA (already synced with all accounts). I was wondering if I could simply add the new client authentication to the list and use it as a fall back authentica...

Global Protect multiple gateway setup

I have an existing setup of Global protect Portal and gateway on first Firewall, I have created a New gateway on another Firewall and added that gateway to the portal of first firewall under Agent---> External gateway. When I am connecting to Global protect from the app i am getting an IP address from the pool of first gateway which is the ol...

GlobalProtect Qualys: 150307 External Service interaction via Host Header Injection

Has anyone scanned their GlobalProtect Portals/Gateways with a Qualys WAS scanner? With GP running version 10.0.x, it's reporting back QID 150307 External Service interaction via Host Header Injection. The scanner injects a special FQDN in the Host header and X-Forwarded-Host header. Qualys Periscope is used to detect any subsequent DNS reque...

jmurphy by L2 Linker
  • 11038 Views
  • 8 replies
  • 1 Likes

GlobalProtect client doubled in size?

Does anyone know why the latest GlobalProtect client distribution package doubled in size? 5.2.12 103MB --> 5.2.13 232MB 6.0.3 155MB --> 6.0.5 283MB 6.1.0 124MB --> 6.1.1 250MB Was going to upgrade some GP clients, but in some cases remote internet access is limited and having people wait 30min for a VPN client download before l...

Why can I still access the company's internal network after the GP client is disconnected?

client终止GPAgent的连接后,ipconfig显示仍然获取到断开前的IP地址(在正确的IP地址池中分配的地址)。同时,仍然可以和内网服务器通信(ping的结果)。给我的感觉是虽然显示连接中断了,但是实际连接并没有中断。除非你手动切换网络信号(换wifi),或者重启电脑。我们检查了VMFW的配置,发现没有相关配置。也就是说,这种现象不是预料之中的,所以想排查原因和解决办法。

Lyman.Li by L0 Member
  • 1075 Views
  • 0 replies
  • 0 Likes

RSA SecurID Windows MFA Agent stops working when GlobalProtect is installed

We are trying to implement RSA SecurID MFA across our infrastructure, specifically to lock down VPN, cross zone traffic, and essential network assets. On the Window servers and some of the more sensitive mobile devices (Windows laptops) we are installing the RSA SecurID Windows MFA Agent. The RSA MFA works fine if GlobalProtect is not installed ...

fpascal4 by L0 Member
  • 5093 Views
  • 2 replies
  • 0 Likes

GlobalProtect 6.0.0-44 GUI on Ubuntu Linux - starts multiple times, cannot close, general usability problems

So I just changed companies and they use this VPN client. Issues: It starts up multiple times (I currently have 3(!) instances in my task bar) This was due to saving sessions in KDE; adding the process to a blacklist fixed this. Still, the GUI should be programmed to detect other instances and only start once. There's no way to close the ...

mwerle by L0 Member
  • 4282 Views
  • 2 replies
  • 1 Likes

Microsoft April 2023 Patches Appears to Break GlobalProtect 6.0.3-38 x64 on Win10 22H2 x64

I applied the April patches and rebooted and GlobalProtect is broken. PanGPS service was not running. I rolled back to my snapshot before updates and all is well. I will be doing more testing to see what I can learn, but thought I would post here to ask if others had tested the patches in a VM with the same version of GP? My Win10 21H2 OS d...

TLS Renegotiation

I work for a DoD agency and they are starting to really crack down on TLS Renegotiation. They are stating that we need to "disable insecure renegotiation: Secure Server not supported" or the offending application will be shutdown. Our GlobalProtect VPN would be denied access from clients I have opened a case with tech support and they are stat...

  • 2069 Posts
  • 68 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks