Why does Global Protect Portal shows port 80 Connection successful via telnet ?

Why does Global Protect Portal shows port 80 Connection successful via telnet ?

21984
Created On 04/06/21 19:37 PM - Last Modified 07/31/25 21:04 PM


Question


Question : Why does Global Protect Portal port 80 shows connection successful ? 
Example :

Online Telnet Test

Some vulnerability scanners detect port 80 and report this could be potentially used for man-in-the-middle-attack (MITM).

Environment


PAN-OS 8.0 and above

Answer


Answer : This is due to redirection support  feature added where the firewall always redirects HTTP to HTTPS.
HSTS header enforces the usage of HTTPS at all times even though the port connection shows successful.
If there is a need be, one can apply a security policy to block TCP port 80/service-http.

Additional Information


Does the PAN provide options for HTTP to HTTPS Redirect on Globalprotect Portal?

How to Configure GlobalProtect Portal Page to be Accessed on any Port

HSTS Additional info
 
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000sY1fCAE&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language