Re: Palo Alto firewalls and DNS delays

[Walter Petruska <wpetruska () USFCA EDU>]

+1 for a PA user's group/mailing list...
Ability to share pre qualified policies or filters would be a great benefit.
On Mar 12, 2013 5:03 AM, "Julian Y Koh" <kohster () northwestern edu> wrote:

> [Side Note: Anyone want to start up a mailing list for PA users, like the
> one that Stanford runs for PacketShaper users and the one run by UNC for
> TippingPoint users?]
>
> For those people running PA firewalls, has anyone seen an issue where DNS
> queries get delayed through the box by anywhere from 1-5 seconds?  We've
> got a case open with PA, but I thought we'd just cast a quick line out here
> to see if we caught anything on it.
>
> My gut feeling is that somehow the box is trying to do some reputation or
> botnet C&C lookup, but supposedly that was turned off during testing with
> no change in behavior.
>
> We're running 5060s with 4.1.11 software.
>
> Thanks in advance!
>
>
> --
> Julian Y. Koh
> Acting Associate Director, Telecommunications and Network Services
> Northwestern University Information Technology (NUIT)
>
> 2001 Sheridan Road #G-166
> Evanston, IL 60208
> 847-467-5780
> NUIT Web Site: <http://www.it.northwestern.edu/>
> PGP Public Key:<http://bt.ittns.northwestern.edu/julian/pgppubkey.html>