This is a lab to use for deploying Global Protect VPN on PA.
![](https://tungle.ca/wp-content/uploads/2022/01/image-421.png)
![](https://tungle.ca/wp-content/uploads/2022/01/image-390.png)
![](https://tungle.ca/wp-content/uploads/2022/01/image-391.png)
![](https://tungle.ca/wp-content/uploads/2022/01/image-392.png)
Create an authentication profile.
![](https://tungle.ca/wp-content/uploads/2022/01/image-393.png)
Assign user to this profile.
![](https://tungle.ca/wp-content/uploads/2022/01/image-394.png)
Configure Global Protect.
![](https://tungle.ca/wp-content/uploads/2022/01/image-395.png)
![](https://tungle.ca/wp-content/uploads/2022/01/image-396.png)
![](https://tungle.ca/wp-content/uploads/2022/01/image-397.png)
Create a new tunnel (tunnel 2) for GLobal Protect.
![](https://tungle.ca/wp-content/uploads/2022/01/image-398.png)
![](https://tungle.ca/wp-content/uploads/2022/01/image-399.png)
![](https://tungle.ca/wp-content/uploads/2022/01/image-401.png)
Configure Global Protect Portal.
![](https://tungle.ca/wp-content/uploads/2022/01/image-402.png)
![](https://tungle.ca/wp-content/uploads/2022/01/image-403.png)
Define my Gateway.
![](https://tungle.ca/wp-content/uploads/2022/01/image-404.png)
![](https://tungle.ca/wp-content/uploads/2022/01/image-407.png)
Create a new tunnel (tunnel2) for Global Protect.
![](https://tungle.ca/wp-content/uploads/2022/01/image-408.png)
![](https://tungle.ca/wp-content/uploads/2022/01/image-410.png)
Configure security policy to allow traffic from VPN to trusted zone and vice versa.
![](https://tungle.ca/wp-content/uploads/2022/01/image-409.png)
Enable “User Authentication ACL” setting on the untrusted zone.
![](https://tungle.ca/wp-content/uploads/2022/01/image-411.png)
Access global protect VPN from a Windows client.
![](https://tungle.ca/wp-content/uploads/2022/01/image-413.png)
![](https://tungle.ca/wp-content/uploads/2022/01/image-414.png)
![](https://tungle.ca/wp-content/uploads/2022/01/image-415.png)
![](https://tungle.ca/wp-content/uploads/2022/01/image-416.png)
![](https://tungle.ca/wp-content/uploads/2022/01/image-417.png)
Ping a Windows machine on a trusted (inside) network.
![](https://tungle.ca/wp-content/uploads/2022/01/image-418-1024x819.png)
![](https://tungle.ca/wp-content/uploads/2022/01/image-419.png)
![](https://tungle.ca/wp-content/uploads/2022/01/image-420.png)
Access Global Protect from Kali Linux.
![](https://tungle.ca/wp-content/uploads/2022/01/image-531.png)
Download Global Protect (.tgz) file, then extract the file, and install the program.
![](https://tungle.ca/wp-content/uploads/2022/01/image-532.png)
![](https://tungle.ca/wp-content/uploads/2022/01/image-533.png)