Error:
An unexpected error occurred. Please click Reload to try again.
Error:
An unexpected error occurred. Please click Reload to try again.
How to run GlobalProtect on an IP Address Other than the One Co... - Knowledge Base - Palo Alto Networks

How to run GlobalProtect on an IP Address Other than the One Configured on Interface

35814
Created On 09/25/18 17:46 PM - Last Modified 01/31/25 20:13 PM


Objective


For this scenario, the IP address 192.168.200.1/24 is configured on ethernet1/4 and the user wants to run GlobalProtect on the IP address 192.168.200.2:
ethernet1/4

Procedure


There are two ways to achieve this:

  1. Configure the IP address 192.168.200.2 on the interface itself as 192.168.200.2/32:SSLVPN_2.JPG
    Now, select this IP address in the GlobalProtect configuration after selecting interface ethernet1/4.
  2. The second option is to terminate GlobalProtect on the loopback interface and create a NAT policy to perform a destination NAT from 192.168.200.2 to the loopback IP address.

 

Additional Information


HOW TO CREATE AND VIEW NAT POLICIES USING THE CLI
RESOURCE LIST: SECURITY POLICY CONFIGURING AND TROUBLESHOOTING
Other users also viewed:
How to download GlobalProtect from the Customer Support Portal
Download and Install the GlobalProtect App for Windows
Resource List: GlobalProtect Configuring and Troubleshooting
PAN-OS Software Updates
Where to find the current preferred software versions? (PAN-OS, GlobalProtect, User-ID Agent, Plugins)
Results 1-5 of 239,043
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClJHCA0&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language