Alternatively, you can use the following CLI command to configure the
Advanced DNS Security timeout value. You can set a value of 100-15,000ms
in 100ms increments. The default value is 100ms and is the recommended
setting.
admin@PA-VM#
set deviceconfig setting adns-setting max-latency <timeout_value_in_milliseconds>
admin@PA-VM# set deviceconfig setting adns-setting max-latency 500
You can check the current timeout configuration using the following CLI
command (refer to the
max-latency
entry of the
output).
admin@PA-VM
show config pushed-template
...
}
deviceconfig {
setting {
dns {
dns-cloud-server dns-qa.service.paloaltonetworks.com;
}
adns-setting {
max-latency 100;
}
}
}
...