Gateway-Level IP Pools
You can now configure gateway-level IP pools to assign
IP addresses to all endpoints that connect to the GlobalProtect
gateway.
Software Support
: PAN-OSĀ® 8.1 and later
releasesGlobalProtect gateways now support gateway-level IP pools that
enable you to assign IPv4 or IPv6 addresses to all endpoints that
connect to the gateway. This enhancement simplifies gateway configuration
by allowing you to define a global IP pool for the entire gateway
instead of requiring separate IP pools for each client setting within the
gateway configuration. GlobalProtect previously supported IP pool
configuration at only the client-level.
You
must configure IP pools at only the gateway-level ()
or only the client-level ().
Use
the following steps to configure a gateway-level IP pool for a GlobalProtect
gateway:
- Select .
- Select an existing gateway configuration orAdda new one.
- Enable tunneling.
- On the tab, enableTunnel Mode.
- When the tunnel settings become editable, configure the tunnel parameters for the gateway.
- Configure the global IP pool used to assign IPv4 or IPv6 addresses to the virtual network adapters on all endpoints that connect to the gateway.Select and thenAddthe IP address subnet/range or address object that you want to use to assign IPv4 or IPv6 addresses to all endpoints that connect to the gateway. To ensure proper routing back to the gateway, you must use a different range of IP addresses from those assigned to existing IP pools on the gateway (if applicable) and to the endpoints that are physically connected to your LAN. We recommend that you use a private IP addressing scheme.
- Save the gateway configuration.
- ClickOKto save your settings.
- Committhe changes.
