Organizations using GlobalProtect® to secure access for their mobile workforce have long faced challenges related to balancing security and user experience. Previously, providing secure connectivity often required routing all DNS queries through the corporate gateway, which unintentionally introduced latency for general web browsing and local application use, diminishing the speed and privacy remote users expect.

To resolve this complex networking challenge and optimize performance, GlobalProtect now introduces Split DNS functionality across all major mobile and desktop platforms, including iOS, Linux, Windows, and macOS. This enhancement significantly clarifies GlobalProtect’s positioning within the NetSec platform by offering granular, policy-based control over endpoint network traffic. Instead of an all-or-nothing approach, Split DNS allows you to precisely define which internal domains require resolution exclusively via the secure GlobalProtect gateway servers. All other domains are automatically directed to the device's local DNS servers. This approach ensures that sensitive enterprise traffic remains secure and routable while non-corporate traffic enjoys optimized, high-speed local resolution.