WiscVPN GlobalProtect VPN
University of Wisconsin-Madison's VPN Service
WiscVPN is based on the Palo Alto client named GlobalProtect. The GlobalProtect client can be downloaded either by
- Connecting to https://uwmadison.vpn.wisc.edu, or
- By visiting vpn.wisc.edu and following the manual download netid protected link at the bottom of the page "Manual download and install, VPN Client Downloads".
Installing and Connecting
- WiscVPN - Downloading and Installing the GlobalProtect (PaloAlto) Client
- WiscVPN - Connecting with the GlobalProtect (PaloAlto) Client
When workstations are connected to the GlobalProtect vpn service, the client computers will not be NAT translated while on campus and use the IP address ranges of:
All workstations, servers, firewalls, networking equipment will see the 10.130.176.0/20 as a source address.
When workstations are connected to the GlobalProtect vpn service and accessing non-campus Internet sites, the client computers IP source address will be translated to 18.104.22.168/27
Departmental GlobalProtect based WiscVPN Service:
The external Public IP used for GlobalProtect Departmental VPN will be allocated from 22.214.171.124/26 (with some grandfathered exceptions)
The End User IP assignments for Departmental VPN GlobalProtect users will be assigned from 10.130.240.0/20 (with the following exceptions)
Filtering: The new service allows for protection of client devices through the use of URL filtering of malware and phishing sites. The policy of what is filtered is determined and implemented through the Office of Cybersecurity.
Tunneling: The old WiscVPN service allowed the user to pick either off or on campus profiles as a method to pick either fully tunneling all VPN traffic or only traffic to UW campus resources. The new GlobalProtect VPN service tunnels ALL traffic though campus.
NOTE: Static WiscVPN Service: The Static WiscVPN service will be migrated on August 15, 2018 between 5-6AM. The service does NOT yet support IPv6