Error:
An unexpected error occurred. Please click Reload to try again.
Error:
An unexpected error occurred. Please click Reload to try again.
Can we use ping to test domain split tunneling in Globalprotect? - Knowledge Base - Palo Alto Networks

Can we use ping to test domain split tunneling in Globalprotect?

18745
Created On 01/29/20 00:27 AM - Last Modified 03/28/23 16:19 PM


Question


Can we use ping to test domain-based split tunneling in GlobalProtect?

Environment


  • PAN-OS 8.1 and above.
  • Palo Alto Firewall.
  • Global Protect configured with domain-based split tunnel.

Answer


Ping can not be used to test domain-based split tunnel. The split tunnel DNS does not take effect on ICMP protocol and works only with http and https connections. Ping uses the ICMP protocol and so it does not work.

 

Additional Information


Refer to Optimized Split Tunneling for GlobalProtect for more information.
Other users also viewed:
How to download GlobalProtect from the Customer Support Portal
Download and Install the GlobalProtect App for Windows
Resource List: GlobalProtect Configuring and Troubleshooting
PAN-OS Software Updates
Where to find the current preferred software versions? (PAN-OS, GlobalProtect, User-ID Agent, Plugins)
Results 1-5 of 239,783
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/kCSArticleDetail?id=kA10g000000PORd&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FkCSArticleDetail

Choose Language