MAIN FEEDS
Do you want to continue?
https://www.reddit.com/r/networking/comments/1tj3ejg/global_protect/on13a32/?context=3
r/networking • u/[deleted] • 14d ago
[deleted]
21 comments sorted by
View all comments
1
HIP checks work but they let the connection happen first. Better to block at the portal config level with OS matching. Or use machine certs plus SAML so only approved devices even get that far.
1
u/sxtn1996 13d ago
HIP checks work but they let the connection happen first. Better to block at the portal config level with OS matching. Or use machine certs plus SAML so only approved devices even get that far.