This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About ChanDaMan
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About ChanDaMan
01-27-2021
2Posts
0Likes
0Solutions
Jan 27, 2021Last Visited
User
Activity
User
Profile
Latest posts by ChanDaMan
| Subject | Views | Posted |
|---|---|---|
| 2112 | 01-22-2019 11:09 PM |
User Badges
Community Statistics
| Member Since | 05-10-2017 07:28 AM |
| Date Last Visited | 01-27-2021 08:01 PM |
| Posts | 2 |
01-22-2019
11:09 PM
I'm trying to block unauthorize devices (non-domain machine and not having our approved anti-virus install) to establish a client VPN session into our network via GlobalProtect. The only way right now is to apply HIP check once a VPN connection via GlobalProtect has established to the user traffic. What we see happening with doing HIP check on actual traffic is un-reliable because the GP agent does not report back to the firewall from time to time, afterward, the user traffic get black-hole (deny), but GlobalProtect is still connect. The only way to get out of that is to disconnect and reconnect to GP again. I'm use to on the Cisco ASA able to restrict a user to establish a client VPN session if the host does not match certain criteria (domain check, anti-virus check, patches, etc.).
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
01-27-2021
08:01 PM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks