Difference between revisions of "GlobalProtect (Palo Alto)"
Jump to navigation
Jump to search
↑ https://weberblog.net/cli-commands-for-troubleshooting-palo-alto-firewalls/
| (7 intermediate revisions by the same user not shown) | |||
| Line 11: | Line 11: | ||
== Versions == | == Versions == | ||
| − | * 9.1 | + | 10.1 |
| − | + | * [[Globalprotect]]: ability to enforce a shorter [[inactivity]] logout period. | |
| − | + | ||
| − | + | 9.1 | |
| + | * GlobalProtect Activity charts and graphs on the [[ACC]] | ||
| + | * [[Log Forwarding]] of [[GlobalProtect logs]] | ||
| + | |||
| + | 9.0 | ||
| + | |||
See also: [[PAN-OS Releases]] | See also: [[PAN-OS Releases]] | ||
== Features == | == Features == | ||
| − | * [[ | + | * [[Multi-factor authentication]] (MFA) methods, including [[one-time password]] tokens, certificates, and smart cards, through [[RADIUS]] and [[SAML]] integration |
* [[Traffic Inspection]] | * [[Traffic Inspection]] | ||
** Identifies application traffic, regardless of port number | ** Identifies application traffic, regardless of port number | ||
** [[SSL]] Decryption | ** [[SSL]] Decryption | ||
* [[URL filtering]] with [[PAN-DB]] | * [[URL filtering]] with [[PAN-DB]] | ||
| + | * [[GlobalProtect]] ([[PAN-OS 10.0]]) blocks compromised devices using unique attributes, such as the hardware serial number of the device and unique host information. | ||
== Related commands == | == Related commands == | ||
| Line 30: | Line 36: | ||
* Read GlobalProtect Administration Guide: https://docs.paloaltonetworks.com/content/dam/techdocs/en_US/pdf/globalprotect/9-1/globalprotect-admin/globalprotect-admin.pdf | * Read GlobalProtect Administration Guide: https://docs.paloaltonetworks.com/content/dam/techdocs/en_US/pdf/globalprotect/9-1/globalprotect-admin/globalprotect-admin.pdf | ||
* Read https://ninjamie.fandom.com/wiki/GlobalProtect | * Read https://ninjamie.fandom.com/wiki/GlobalProtect | ||
| + | * Read GlobalProtect Resource List on Configuring and Troubleshooting https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClfXCAS | ||
== Related terms == | == Related terms == | ||
| Line 42: | Line 49: | ||
* {{firewalls}} | * {{firewalls}} | ||
| − | + | [[Category:GlobalProtect]] | |
[[Category:Firewalls]] | [[Category:Firewalls]] | ||
Latest revision as of 08:18, 26 November 2021
Palo Alto GlobalProtect is an always-on SSL/IPsec VPN solution with MFA authentication included on PAN-OS firewall devices. Port UDP 4501 is used by IPsec for the data communication between the GlobalProtect client and the firewall
- GlobalProtect Application Command Center (ACC)
- Prisma Access (formerly GlobalProtect cloud service)
- GlobalProtect Agent
Versions[edit]
10.1
- Globalprotect: ability to enforce a shorter inactivity logout period.
9.1
- GlobalProtect Activity charts and graphs on the ACC
- Log Forwarding of GlobalProtect logs
9.0
See also: PAN-OS Releases
Features[edit]
- Multi-factor authentication (MFA) methods, including one-time password tokens, certificates, and smart cards, through RADIUS and SAML integration
- Traffic Inspection
- Identifies application traffic, regardless of port number
- SSL Decryption
- URL filtering with PAN-DB
- GlobalProtect (PAN-OS 10.0) blocks compromised devices using unique attributes, such as the hardware serial number of the device and unique host information.
Related commands[edit]
show global-protect-gateway current-usershow global-protect-gateway previous-usershow global-protect-gateway gatewayshow global-protect-gateway flow[1]
- current-satellite Show current GlobalProtect gateway satellites
- current-user Show current GlobalProtect gateway users
- flow Show dataplane GlobalProtect gateway tunnel information
- flow-site-to-site Show dataplane GlobalProtect site-to-site gateway tunnel information
- gateway Show list of GlobalProtect gateway configuration
- previous-satellite Show previous GlobalProtect gateway satellites
- previous-user Show previous user session for GlobalProtect gateway users
Activities[edit]
- Read GlobalProtect Administration Guide: https://docs.paloaltonetworks.com/content/dam/techdocs/en_US/pdf/globalprotect/9-1/globalprotect-admin/globalprotect-admin.pdf
- Read https://ninjamie.fandom.com/wiki/GlobalProtect
- Read GlobalProtect Resource List on Configuring and Troubleshooting https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClfXCAS
Related terms[edit]
- HIP. If the Host Information Profile (HIP) feature is enabled, the gateway generates a HIP report from the raw host data that the endpoints submit, which it can use for policy enforcement.
- Prisma Cloud
See also[edit]
- GlobalProtect, GlobalProtect logs, GlobalProtect client, HIP,
show global-protect-gateway[current-user | statistics | flow ] - VPN: IPsec (Openswan), OpenVPN, Forticlient, GlobalProtect (PAN-OS), WireGuard (Linux Kernel), Tailscale, PulseSecure, WebVPN, SoftEther, ESP, IKE, AWS VPN, Zerotier, VPN client, Pritunl, GCP Cloud VPN
- PAN-OS (Palo Alto): PAN-OS Releases,
show vpn, GlobalProtect, GlobalProtect logs, WildFire,show log,show session all, MDM,match, PAN-OS reports, HIP, Zone - Palo Alto, Palo Alto PA-Series, PAN-OS, Panorama, WildFire, Cortex Data Lake, Prisma Cloud
- DMZ, Port knocking, Bastion host, Firewall Software:
iptablesufwfirewalldnftablesfirewall-cmdipfw (FreeBSD)PF (OpenBSD), netsh advfirewall, PAN-OS, WAF, pfsense, VyOS, Cisco ASA, DMZ, F5, URL Filtering, port forwarding, macOS application firewall, Windows firewall, Fortigate, ngrok, Network ACL
Advertising:
