- Get Started
- News & Events
- Collaboration
- Education Services
- Technologies
- Next-Generation Firewall
- GlobalProtect
- Threat Prevention Services
- Endpoint Protection
- SSL Decryption
- App-ID
- Content-ID
- User-ID
- 5G
- IoT Security
- Cloud Identity Engine
- Panorama
- AIOps for NGFW
Network Security
- Prisma Access
- Prisma Cloud
- Prisma SD-WAN
- Cloud NGFW for AWS
- CN-Series
- VM-Series:
- Private Cloud
- OCI
- Alibaba
- AWS
- GCP
- Azure
Cloud Security
- Cortex XDR
- Cortex XSOAR
- Cortex Data Lake
- Cortex Xpanse
Security Operations
- Resources
- COVID-19 Response Center
Enable split tunnel for Zoom
- LIVEcommunity
- Collaboration
- Discussions
- General Topics
- Enable split tunnel for Zoom
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Printer Friendly Page
Enable split tunnel for Zoom
- Mark as New
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report This Content
07-19-2020 02:40 AM
Hi
We are planning to exclude all zoom traffic from Global protect VPN and currently we are using 4.1.5 GP agent version.
I have gone through the zoom documentation and created EDL but not getting option to exclude the EDL (external dynamic list ) in split tunnel >access route >Exclude , Kindly suggest to enable split tunnel for Zoom traffic.
EDL
Zoom | |
Zoom meetings | |
Zoom Cloud Room Connector | |
Zoom Phone |
- Mark as New
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report This Content
07-19-2020 03:17 PM
Hi @Yusuf_PA
First I wantdd to mention that globalprotect 4.1 already reached it' end of life date quite a while ago (Jabuary 2019): https://www.paloaltonetworks.com/services/support/end-of-life-announcements/end-of-life-summary
You should consider an update to 5.1.
Not back to your question. Excluding networks in globalprotect is not possible with an EDL. You need to manually add the networks/IPs one by one or you could build an automation that fetches the IPs from the zoom URLs and configures them via API. If you need a better way to solve your problem, you should take a look into the options you have with a globalprotect subscription:
- Include/exclude traffic based on DNS domains
- Include/exclude traffic based on client application
- Mark as New
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report This Content
08-11-2021 08:46 PM
The question that I was looking for, but not the answer I desired to see. PAN should consider adding this feature, as both domain and app path based split tunnel is not working ideally for the Zoom app.
- Mark as New
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report This Content
08-11-2021 10:21 PM
@Stribnet you could ask your SE about that to have a feature request created. Maybe there is already one, so you could add your vote to it.
... or as this is not working properly, you could create a TAC case to hopefully find the reason why the existing features aren't working with zoom.
- GlobalProtect IOS stuck in General Topics
- What am I doing wrong with Global Protect updates? in GlobalProtect Discussions
- VPN Drops after 1 minute with the error ike-nego-p2-proxy-id-bad in General Topics
- Not Able To Access Microsoft Store in Prisma Access Discussions
- GP - Split tunnel is working like full tunnel in GlobalProtect Discussions
Show your appreciation!
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
