Clientless VPN and HTTP Redirects

Showing results for 
Show  only  | Search instead for 
Did you mean: 
Please sign in to see details of an important advisory in our Customer Advisories area.

Clientless VPN and HTTP Redirects

L0 Member


I am attempting to use the Clientless VPN feature to give access to an internal web proxy server but have an issue where the Palo Alto is not rewriting URL's from a HTTP 301 Redirect.  


We use inginx/vouch as the proxy server to provide single sign on functionality to our web applications. Part of the process for this authentication is that if a non-authenticated user hits inginx, the HTTP session is handed off to vouch that issues a HTTP 301 redirect to the client browser which contains another internal URL where the user can perform their log in. The issue is this internal URL is not re-written by the Global Protect portal so the user's browser is performing a name lookup and trying to go over the Internet to access the URL which is internal to our network only. 


Does anyone know if the clientless VPN supports rewriting of HTTP 301 Redirect?






  • 0 replies
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!