If you want to use GlobalProtect to provide a secure
remote access or virtual private network (VPN) solution via single
or multiple internal/external gateways, you do not need any GlobalProtect
licenses. However, to use some of the more advanced features (such as
HIP checks and associated content updates, support for the GlobalProtect
mobile app, or IPv6 support) you must purchase an annual GlobalProtect
Gateway license. This license must be installed on each firewall
running a gateway(s) that: