How to restrict web GUI access from Global Protect Portal over port 4443
24871
Created On 05/15/19 17:31 PM - Last Modified 07/31/19 01:15 AM
Objective
To restrict web GUI access to port 4443 on the Global Protect (GP) portal address
Environment
- Firewall, any Hardware or VM platform
- PAN-OS version 8.x.x or 9.x.x
Procedure
- Find out which interface is being used for the Global Protect portal
GUI: Network > GlobalProtect > Portals > Interface
- Check which Management profile that is associated with the interface from step 1
GUI: Network > Interfaces > Ethernet
- Uncheck HTTPS to disallow Web GUI access to the firewall which will disable port 4443
GUI: Network > Network Profile > Interface Mgmt > Click on the Management Profile from step 2