PaloAlto | GlobalProtect - New
Topologi 
Zone
Zone
Interface Ethenet & Tunnel
 |
I
Certifcate
Device | Certifcte Management | Certificate | Generate
Lalu klik kembali certificate GP_RootCA nya, centang Trusted Root-CA
Device | Certifcte Management | Certificate | Generate
SSL / TSL Profile
Device | Certifcte Management | SSL / TSL CertifcateProfile | Add
Atutehnticatio Profile
Device | Authentication Profile | Add (+)
Global Protect
Network | Global Protect | Portal | General
Network | Global Protect | Portal |Authentication
Network | Global Protect | Portal | Agent | Trusted Root CA
Network | Global Protect | Portal | Agent | Tab Authentication
Network | Global Protect | Portal | Agent | Tab Config Selection Criteria | USER GROUP.
Network | Global Protect | Portal | Agent | Tab External | Add
Network | Global Protect | Portal | Agent | Tab App
Network | Global Protect | Gateway | Add (+) | General Tab
Network | Global Protect | Gateway | Authentication | Pilih SSL nya yg sudah dibuat sebelumnya. Lalu klik tanda (+) untuk membuat Client Authentication.
Network | Global Protect | Gateway | Agent | Tunnel Setting
Network | Global Protect | Gateway | Agent | Client Setting | Config Selection Criteria
Network | Global Protect | Gateway | Agent | Client Setting | Authentication Overirde
Network | Global Protect | Gateway | Agent | Client Setting | IP Pool
Network | Global Protect | Gateway | Agent | Client Setting | Split Tunnel.
Ini buat segemetn darea server yg bisa dikases dari user GP.
Network | Global Protect | Gateway | Agent | Client Setting | Network Services
Firewall Policy
----------Selesai--------
Tahap: II. Sekarang Seting GLobal Protect dari Komputer. Akses https://vpn.training.lab dari PC luar (outside) lalu login. Setelah login download GLobalProtectnya.
TAG
# global protect # vpn
Posting Komentar untuk "PaloAlto | GlobalProtect - New"