GlobalProtect DNS issues in Windows after disconnect

Announcements

ATTENTION Customers, All Partners and Employees: The Customer Support Portal (CSP) will be undergoing maintenance and unavailable on Saturday, November 7, 2020, from 11 am to 11 pm PST. Please read our blog for more information.

Reply
Highlighted
L3 Networker

GlobalProtect DNS issues in Windows after disconnect

I am using GlobalProtect 5.09 with PanOS 9.0.7.

 

While using dual monitors with a split-tunnel VPN, I find that when VPN disconnects dns resolution is still trying to use internal dns servers.  I am forced to reboot my desktop at home multiple times per day when using remote desktop with two monitors, or to use rdp on a single monitor.

 

The dual monitor remote session freezes multiple times per day, often requiring me to signout of windows.  After the signout, I no longer have DNS resolution and have to reboot.  Same thing happens with VPN disconnects.

 

Any workarounds?  Should I use external DNS as a secondary in the GlobalProtect gateway settings?  I also had the same problem with the prior version of GlobalProtect client and PanOS.

 

Tags (1)

Accepted Solutions
Highlighted
L3 Networker

Found a solution.   When I added satellite tunnel and allowing authentication from local auth or certificate, the issue went away.

View solution in original post


All Replies
Highlighted
L3 Networker

Hi,

 

I don't quite follow your question. Can you please elaborate?

Highlighted
L3 Networker

GlobalProcect agent disconnects.

Nslookup still points at internal network DNS resolvers specified by the gateway, not the OS dns resolvers such as 8.8.8.8 for google dns.

 

Highlighted
L3 Networker

Found a solution.   When I added satellite tunnel and allowing authentication from local auth or certificate, the issue went away.

View solution in original post

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!