My org maybe required to have users always VPN/tunnel traffic back to our org to be processed by our PA 820 firewall (6 months old). We currently have an upstream Cisco ASA with anyconnect (basic VPN not the one with host detection & always on functionality). The Palo Alto can also has global protect VPN that can do a "always on" setup. We are a 70% OSX 30% PC laptop shop so working with both Windows and OSX is a requirement.
Recently I got to troubleshoot a client's Windows 7 system with an always on Cisco Anyconnect and I was dissatisfied with it's setup. Basicly the setup was we changed our guest password, Anyconnect wouldn't stop trying to use the old one despite me going in an updating the windows wireless setup nor did it every try and throw an error on the screen to the user that the password was wrong. It would just connect and immediately disconnect in the system tray of the laptop. I did note that Windows was managing wireless settings so I don't know if that should have been disabled or not.
So what is your org using between Cisco and PA's VPN or is there a better one we should consider (that is not cloud based)?
No comments:
Post a Comment