Lessons learned : Global Protect + User ID w/ Palo Alto Networks firewall

Scenario : A palo alto firewall has been successfully setup to use global protect, along with LDAP authentication. Also, USER-ID has been setup internally,with firewall policies written to include username / groups. This allows the firewall administrator to deploy consistent firewall policies to both internal and VPN users, based on active directory groups Problem: After a … Continue reading Lessons learned : Global Protect + User ID w/ Palo Alto Networks firewall

Advertisements

Connecting to a Palo Alto Network GlobalProtect Gateway from Linux

Please note: this software has only been officially tested on Ubuntu and CentOS distributions. The VPN software uses community based vpnc software, please direct support questions about the actual client to your distribution's support channels. The following documentation is based on Ubuntu 12.04 LTS - Install the following packages on your system: * network-manager-vpnc * … Continue reading Connecting to a Palo Alto Network GlobalProtect Gateway from Linux

Nugget Post : CCNP Security 642-647

You can find my mind-map for CCNP security 642-647 / 642-648 (Deploying Cisco ASA VPN Solutions) here (click here) You may download the image. In case the image refuses to open or is marked as corrupted, change the extension from .jpg to .png Enjoy! 🙂

Windows L2TP split tunnelling using CMAK

by Default, the in-built windows L2TP client will attempt to tunnel all internet traffic over an L2TP VPN connection. This can of course be disabled to achieve a low level of split tunnelling: Right click on the VPN adapter > properties > TCP/IP settings > Advanced. Clear the “use default gateway on remote network” It’s … Continue reading Windows L2TP split tunnelling using CMAK

Small note: Linux and Cisco VPN client (vpnc)

The scenario I faced is probably typical of many IT guys who work from home: I needed to connect to my work VPN but I prefer to use my more powerful linux machine from home. IT here only really support windows so I was on my own here. The VPN uses cisco technology, and IT … Continue reading Small note: Linux and Cisco VPN client (vpnc)