Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 418
  • Last Modified:

Palo Alto Networks Global Protect

How do you see the list of all the possible VPN gateways to which a remote user might connect to the corporate network? I had been reading that GP could be programmed to use the nearest/closest gateway. Any insight how that is displayed or configured appreciated. Thank you.
0
amigan_99
Asked:
amigan_99
1 Solution
 
btanExec ConsultantCommented:
Can try show previous and current user connected in which the gateway and its tunnel will be included. Can see from GUI that can view a list of the GlobalProtect users that are currently or previously connected to the GlobalProtect gateway.
 
Steps
On the WebGUI:
Go to Network > GlobalProtect > Gateways

https://live.paloaltonetworks.com/t5/Management-Articles/How-to-List-Current-or-Previously-Connected-GlobalProtect-Users/ta-p/56145

Besides configuring the Gateways above. You can configure them into agent deployed to client machine. See step 8 where you can set priority too
The configuration may include the following:
A list of gateways the agent/app can connect to, and whether the user can establish manual connections with those gateways.
....

(External gateways only) Set the Priority of the gateway by clicking in the field and selecting a value:

If you have only one external gateway, you can leave the value set to Highest (the default).

If you have multiple external gateways, you can modify the priority values (ranging from Highest to Lowest) to indicate a preference for the specific user group to which this configuration applies. For example, if you prefer that the user group connects to a local gateway you would set the priority higher than that of more geographically distant gateways. The priority value is then used to weight the agent’s gateway selection algorithm.
https://www.paloaltonetworks.com/documentation/60/globalprotect/global_protect_6-0/set-up-the-globalprotect-infrastructure/define-the-globalprotect-client-configurations#43122
0
 
amigan_99Network EngineerAuthor Commented:
Just what I was looking for. Thank you!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Identify and Prevent Potential Cyber-threats

Become the white hat who helps safeguard our interconnected world. Transform your career future by earning your MS in Cybersecurity. WGU’s MSCSIA degree program was designed in collaboration with national intelligence organizations and IT industry leaders.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now