Can Management Interface use DNS Proxy Rules And Static Entries through DNS Proxy Object?

Can Management Interface use DNS Proxy Rules And Static Entries through DNS Proxy Object?

20136
Created On 09/26/18 13:53 PM - Last Modified 06/12/23 10:13 AM


Resolution


PAN-OS 6.0,, 7.0

Yes. The management interface can use DNS proxy rules and static entries through the DNS proxy object.

PAN-OS 5.0 and lower

The DNS Proxy rules and static entries cannot be used by the management interface through the DNS proxy object. When DNS Proxy is configured on the Palo Alto Networks firewall running PAN-OS 5.0 and lower, the DNS proxy rules and static rules will work for the hosts sitting behind the firewall but not for traffic from the management interface. The only fields that apply for the management interface through DNS proxy object are the primary and secondary DNS server fields, as shown in the following screenshot:

dns_proxy.jpg

owner: mvenkatesan
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClyQCAS&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language