Professional Documents
Culture Documents
Global Protect
Global Protect
Global Protect
o GlobalProtect is the Palo Alto Networks Firewall remote client-based VPN services.
o GlobalProtect is program that runs on endpoint desktop computer, laptop, tablet, etc.
o GlobalProtect establishes an SSL/IPsec VPN tunnel from a laptop, smartphone or tablet.
o It protect by using same security policies that protect sensitive resources in corporate.
o It secures intranet traffic & allows to connect to corporate network to access resources.
o GlobalProtect securely allow to connect to corporate network from anywhere in world.
o The Global Protect is the system used to connect to the Virtual Private Network (VPN).
o It provides encrypted connection between your computer and the corporate network.
o It is network security for endpoints enables organizations to protect mobile workforce.
o GlobalProtect enables security teams to build policies that are consistently enforced.
o Palo Alto Network GlobalProtect supports all existing PAN-OS authentication methods.
o Including Kerberos, RADIUS, LDAP, SAML , client certificates, and local user database.
o Once GlobalProtect authenticates the user, it immediately provides mapping for User-ID.
o GlobalProtect has options to make strong authentication even easier to use and deploy.
o Use GlobalProtect to extend the protection of the platform to users wherever they go.
Access the External tab and Add an External Gateway. Give the Name to External Gateway and
provide IP, Source Region, and Priority details and click OK.
Access the Authentication tab, select the SSL/TLS service profile and click on Add to add a client
authentication profile. Here, you need to select Name, OS and Authentication profile.
Access the Client Settings tab and click on Add. Just, give a user-friendly name to this.
Access the Split Tunnel tab and Include all networks you want to give access to remote clients.
For all routes, you need to provide a 0.0.0.0/0 network. For this example, I just configure my
LAN network which is 192.168.78.0/24.