Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 367
  • Last Modified:

Palo Alto Networks Global Protect

How do you see the list of all the possible VPN gateways to which a remote user might connect to the corporate network? I had been reading that GP could be programmed to use the nearest/closest gateway. Any insight how that is displayed or configured appreciated. Thank you.
0
amigan_99
Asked:
amigan_99
1 Solution
 
btanExec ConsultantCommented:
Can try show previous and current user connected in which the gateway and its tunnel will be included. Can see from GUI that can view a list of the GlobalProtect users that are currently or previously connected to the GlobalProtect gateway.
 
Steps
On the WebGUI:
Go to Network > GlobalProtect > Gateways

https://live.paloaltonetworks.com/t5/Management-Articles/How-to-List-Current-or-Previously-Connected-GlobalProtect-Users/ta-p/56145

Besides configuring the Gateways above. You can configure them into agent deployed to client machine. See step 8 where you can set priority too
The configuration may include the following:
A list of gateways the agent/app can connect to, and whether the user can establish manual connections with those gateways.
....

(External gateways only) Set the Priority of the gateway by clicking in the field and selecting a value:

If you have only one external gateway, you can leave the value set to Highest (the default).

If you have multiple external gateways, you can modify the priority values (ranging from Highest to Lowest) to indicate a preference for the specific user group to which this configuration applies. For example, if you prefer that the user group connects to a local gateway you would set the priority higher than that of more geographically distant gateways. The priority value is then used to weight the agent’s gateway selection algorithm.
https://www.paloaltonetworks.com/documentation/60/globalprotect/global_protect_6-0/set-up-the-globalprotect-infrastructure/define-the-globalprotect-client-configurations#43122
0
 
amigan_99Network EngineerAuthor Commented:
Just what I was looking for. Thank you!
0

Featured Post

Managing Security Policy in a Changing Environment

The enterprise network environment is evolving rapidly as companies extend their physical data centers to embrace cloud computing and software-defined networking. This new reality means that the challenge of managing the security policy is much more dynamic and complex.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now