Palo Alto GlobalProtect Cloud Integration

7.2 adds support for integration of branch office Oracle Talari Appliances with the Palo Alto GlobalProtect cloud service via IPsec tunneling, enabling users to tunnel Internet-destined traffic to GPCS for cloud-hosted filtering and security services.

To configure a Palo Alto GlobalProtect cloud IPSec tunnel, navigate to Configuration > Configuration Editor on the NCN and Import the current configuration file. Click on the Advanced tab, expand Connections > [Site Name] > IPSec Tunnels, and click the (+) icon.

Select Palo Alto as the Service Type, select the Local IP address from the dropdown, fill in the Peer IP address of the GlobalProtect cloud service IKE Gateway, enter the IKE Pre-Shared Key, add the local Protected Networks for the IPsec tunnel, and click Apply.

If no options are available in the Local IP dropdown, ensure Internet Service is enabled on at least one WAN link at the site under Connections > [Site Name] > Internet Services.