Difference between revisions of "GlobalProtect (Palo Alto)"
Jump to navigation
Jump to search
↑ https://weberblog.net/cli-commands-for-troubleshooting-palo-alto-firewalls/
Tags: Mobile web edit, Mobile edit |
|||
| Line 18: | Line 18: | ||
== Features == | == Features == | ||
| − | * [[ | + | * [[Multi-factor authentication]] (MFA) methods, including [[one-time password]] tokens, certificates, and smart cards, through [[RADIUS]] and [[SAML]] integration |
* [[Traffic Inspection]] | * [[Traffic Inspection]] | ||
** Identifies application traffic, regardless of port number | ** Identifies application traffic, regardless of port number | ||
Revision as of 09:13, 11 November 2020
Palo Alto GlobalProtect is an always-on SSL/IPsec VPN solution with MFA authentication included on PAN-OS firewall devices. Port UDP 4501 is used by IPsec for the data communication between the GlobalProtect client and the firewall
- GlobalProtect Application Command Center (ACC)
- Prisma Access (formerly GlobalProtect cloud service)
- GlobalProtect Agent
Versions
- 9.1
- GlobalProtect Activity charts and graphs on the ACC
- Log Forwarding of GlobalProtect logs
- 9.0
See also: PAN-OS Releases
Features
- Multi-factor authentication (MFA) methods, including one-time password tokens, certificates, and smart cards, through RADIUS and SAML integration
- Traffic Inspection
- Identifies application traffic, regardless of port number
- SSL Decryption
- URL filtering with PAN-DB
Related commands
show global-protect-gateway current-usershow global-protect-gateway previous-usershow global-protect-gateway gatewayshow global-protect-gateway flow[1]
- current-satellite Show current GlobalProtect gateway satellites
- current-user Show current GlobalProtect gateway users
- flow Show dataplane GlobalProtect gateway tunnel information
- flow-site-to-site Show dataplane GlobalProtect site-to-site gateway tunnel information
- gateway Show list of GlobalProtect gateway configuration
- previous-satellite Show previous GlobalProtect gateway satellites
- previous-user Show previous user session for GlobalProtect gateway users
Activities
- Read GlobalProtect Administration Guide: https://docs.paloaltonetworks.com/content/dam/techdocs/en_US/pdf/globalprotect/9-1/globalprotect-admin/globalprotect-admin.pdf
- Read https://ninjamie.fandom.com/wiki/GlobalProtect
- Read GlobalProtect Resource List on Configuring and Troubleshooting https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClfXCAS
Related terms
- HIP. If the Host Information Profile (HIP) feature is enabled, the gateway generates a HIP report from the raw host data that the endpoints submit, which it can use for policy enforcement.
- Prisma Cloud
See also
- GlobalProtect, GlobalProtect logs, GlobalProtect client, HIP,
show global-protect-gateway[current-user | statistics | flow ] - VPN: IPsec (Openswan), OpenVPN, Forticlient, GlobalProtect (PAN-OS), WireGuard (Linux Kernel), Tailscale, PulseSecure, WebVPN, SoftEther, ESP, IKE, AWS VPN, Zerotier, VPN client, Pritunl, GCP Cloud VPN
- PAN-OS (Palo Alto): PAN-OS Releases,
show vpn, GlobalProtect, GlobalProtect logs, WildFire,show log,show session all, MDM,match, PAN-OS reports, HIP, Zone - Palo Alto, Palo Alto PA-Series, PAN-OS, Panorama, WildFire, Cortex Data Lake, Prisma Cloud
- DMZ, Port knocking, Bastion host, Firewall Software:
iptablesufwfirewalldnftablesfirewall-cmdipfw (FreeBSD)PF (OpenBSD), netsh advfirewall, PAN-OS, WAF, pfsense, VyOS, Cisco ASA, DMZ, F5, URL Filtering, port forwarding, macOS application firewall, Windows firewall, Fortigate, ngrok, Network ACL
Advertising:
