Global Protect Notes

Last Updated: November 1st, 2021

Accesing GlobalProtect portal from inside the local network

Need to set up a hairpin NAT rule in order for the internal clients to access your portal using the WAN IP.

Make sure it is the first rule, or before your outgoing NAT rule.

UI:

hairpin

Config:

nat {
    rules {
        "No NAT" 7be7eaa3-4a87-486f-afc8-a7caaeacf34d {
            to Untrust-L3;
            from Trust-L3;
            source any;
            destination "WAN IP";
            service any;
        }
    }
}

Accesing GlobalProtect portal from inside the local network​

Accesing GlobalProtect portal from inside the local network