Ports Used for GlobalProtect

GlobalProtect uses the following ports.
Destination Port
Protocol
Description
443
TCP
Used for communication between GlobalProtect agents and portals, or GlobalProtect agents and gateways and for SSL tunnel connections.
GlobalProtect gateways also use this port to collect host information from GlobalProtect agents and perform host information profile (HIP) checks.
4501
UDP
Used for IPSec tunnel connections between GlobalProtect agents and gateways.
For tips on how to use a loopback interface to provide access to GlobalProtect on different ports and addresses, refer to Can GlobalProtect Portal Page be Configured to be Accessed on any Port?

Related Documentation