cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Enable split tunnel for Zoom

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Reply
Highlighted
Yusuf_PA
L1 Bithead
‎07-19-2020 02:40 AM
‎07-19-2020 02:40 AM

Enable split tunnel for Zoom

Hi

 

We are planning to exclude all zoom traffic from Global protect VPN and currently we are using 4.1.5 GP agent version.

 

I have gone through the zoom documentation and created EDL but not getting option to exclude the EDL (external dynamic list ) in split tunnel >access route >Exclude  , Kindly suggest to enable split tunnel for Zoom traffic.

 

https://support.zoom.us/hc/en-us/articles/201362683-Network-firewall-or-proxy-server-settings-for-Zo....

EDL

Zoom

https://assets.zoom.us/docs/ipranges/Zoom.txt

Zoom meetings

https://assets.zoom.us/docs/ipranges/ZoomMeetings.txt

Zoom Cloud Room Connector

https://assets.zoom.us/docs/ipranges/ZoomCRC.txt

Zoom Phone

https://assets.zoom.us/docs/ipranges/ZoomPhone.txt

0 Likes
Reply
Highlighted
vsys_remo
Cyber Elite
Cyber Elite
‎07-19-2020 03:17 PM
‎07-19-2020 03:17 PM

Hi @Yusuf_PA 

First I wantdd to mention that globalprotect 4.1 already reached it' end of life date quite a while ago (Jabuary 2019): https://www.paloaltonetworks.com/services/support/end-of-life-announcements/end-of-life-summary

You should consider an update to 5.1.

 

Not back to your question. Excluding networks in globalprotect is not possible with an EDL. You need to manually add the networks/IPs one by one or you could build an automation that fetches the IPs from the zoom URLs and configures them via API. If you need a better way to solve your problem, you should take a look into the options you have with a globalprotect subscription:

  • Include/exclude traffic based on DNS domains
  • Include/exclude traffic based on client application

https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-web-interface-help/globalprotect/network-globalp...

0 Likes
Reply
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!

Latest Blogs
Latest Posts
Privacy Policy Terms of Use
Copyright 2007 - 2020 - Palo Alto Networks