New Palo Alto SSl VPN Login Steps

How to use new SSL VPN system

1) Ensure from the Non-Celcom network the VPN site is accessible

2) From the Non-celcom network , access to the VPN site using https:// securevpn.celcom.com.my
3) Provide your login credentials as mentioned below:-
a. Username: ID@celcom.com.my
b. Password: AD+6 digit 2FA token

For example: in case the user from the celcom domain has the ID: V1234, the login
credentials will be as below:-

a. Username: V05663X@celcom.com.my
b. Password: *****<6 digit token>
 4) Upon successful authentication, download the new Palo Alto VPN client, Global Protect based
on your system specifications i.e 32 bit or 64 bit. You can refer the below link to check what
system you are using

https://support.microsoft.com/en-us/help/827218/how-to-determine-whether-a-computer-is-running-
a-32-bit-version-or-64

5) Once the Global Protect(GP) client is downloaded, launch the client and in the site address enter
the IP: securevpn.celcom.com.my
6) Provide the user-name and password as per the step 2 listed above.

7) Upon successful authentication, GP will display the welcome message and status will be
changed to Connected.
8) Users will get the private IP from the VPN pool 10.202.36.0/22.

9) Once the VPN is connected, User can then access the routine applications form his/her desktop.
Below are the few examples of the network test for the celcom.com.my and the rdp test for the
Jump server 10.1.255.17.
The test results shows the application test for the jump server and the network connection test
is successful.
10) Once user is connected to the GP VPN, the DNS servers on the user laptop will be updated with
the celcom internal DNS servers.
11) We have enabled the split tunneling on the VPN, means all the internet traffic will go via the
user internet link and any traffic towards 10.0.0.0/8 will use the VPN tunnel towards the celcom
network.

12) Once user has completed the required task using the VPN, user needs to click the dis-connect
icon from the GP application as shown below.
13) Upon disconnection the connection status on the GP application will be changed to Not
Connected.

14) After the user is dis-connected and wants to connect again, users can directly launch the GP
application and connect the VPN. The first two steps are only for one time to download the
client from the firewall.