Global protect clientless vpn - not rewriting an database query properly

Showing results for 
Show  only  | Search instead for 
Did you mean: 
Please sign in to see details of an important advisory in our Customer Advisories area.

Global protect clientless vpn - not rewriting an database query properly

L0 Member

We have an application that we moved to the Palo's clientless vpn.  When you perform a database query, the .aspx portion of the query is chopped off and you get this page isn't working.  Didn't send any data.  But I can see from the rewrite string that the .aspx page missing and just an empty query is left.   I have a ticket open with Palo but thought I would post something here if anyone has encountered anything similar.  We're on version 9.1.5.    There really isn't much in the way of rewrite customization.   Coming from F5 and Cisco there were some additional rewrite settings but I don't see much in the Palo except the ability to exclude certain domains.  


I followed the instructions on packet capture at How to Troubleshoot GlobalProtect Clientless VPN ( but never could get anything captures.   


Anyway, any thoughts or helpful hints would be much appreciated.  thanks


Cyber Elite
Cyber Elite


Your pretty limited with the clienteles VPN and some applications simply don't function properly. Have you attempted to put the URL in question into the re-write exclusion? 

I put the domain  in the rewrite exclusion as a test.  is that what you mean?    That seemed to only work if I was on the software VPN client as the application isn't accessible without a VPN.  

  • 2 replies
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!