Networking Changes in PAN-OS 8.1
Table of Contents
8.1
Expand all | Collapse all
-
-
- App-ID Changes in PAN-OS 8.1
- Authentication Changes in PAN-OS 8.1
- Content Inspection Changes in PAN-OS 8.1
- GlobalProtect Changes in PAN-OS 8.1
- User-ID Changes in PAN-OS 8.1
- Panorama Changes in PAN-OS 8.1
- Networking Changes in PAN-OS 8.1
- Virtualization Changes in PAN-OS 8.1
- Appliance Changes in PAN-OS 8.1
- Associated Software and Content Versions
- Limitations
-
- PAN-OS 8.1.25 Addressed Issues
- PAN-OS 8.1.24-h2 Addressed Issues
- PAN-OS 8.1.24-h1 Addressed Issues
- PAN-OS 8.1.24 Addressed Issues
- PAN-OS 8.1.23-h1 Addressed Issues
- PAN-OS 8.1.23 Addressed Issues
- PAN-OS 8.1.22 Addressed Issues
- PAN-OS 8.1.21-h1 Addressed Issues
- PAN-OS 8.1.21 Addressed Issues
- PAN-OS 8.1.20-h1 Addressed Issues
- PAN-OS 8.1.20 Addressed Issues
- PAN-OS 8.1.19 Addressed Issues
- PAN-OS 8.1.18 Addressed Issues
- PAN-OS 8.1.17 Addressed Issues
- PAN-OS 8.1.16 Addressed Issues
- PAN-OS 8.1.15-h3 Addressed Issues
- PAN-OS 8.1.15 Addressed Issues
- PAN-OS 8.1.14-h2 Addressed Issues
- PAN-OS 8.1.14 Addressed Issues
- PAN-OS 8.1.13 Addressed Issues
- PAN-OS 8.1.12 Addressed Issues
- PAN-OS 8.1.11 Addressed Issues
- PAN-OS 8.1.10 Addressed Issues
- PAN-OS 8.1.9-h4 Addressed Issues
- PAN-OS 8.1.9 Addressed Issues
- PAN-OS 8.1.8-h5 Addressed Issues
- PAN-OS 8.1.8 Addressed Issues
- PAN-OS 8.1.7 Addressed Issues
- PAN-OS 8.1.6-h2 Addressed Issues
- PAN-OS 8.1.6 Addressed Issues
- PAN-OS 8.1.5 Addressed Issues
- PAN-OS 8.1.4-h2 Addressed Issues
- PAN-OS 8.1.4 Addressed Issues
- PAN-OS 8.1.3 Addressed Issues
- PAN-OS 8.1.2 Addressed Issues
- PAN-OS 8.1.1 Addressed Issues
- PAN-OS 8.1.0 Addressed Issues
Networking Changes in PAN-OS 8.1
When the device uses a DNS proxy for the DNS Server setting,
internal queries act according to the service route configuration
to use the MGT interface or explicitly configured dataplane interface
address.
PAN-OS 8.1 has the following changes in default behavior
for networking features:
Feature | Change |
---|---|
Jumbo Frame Global MTU | As of PAN-OS 8.1, if you Enable
Jumbo Frame Global MTU configuration (Device Setup Session Session Settings |
DNS Proxy | In releases prior to PAN-OS 8.1, when the
Device uses a DNS Proxy Object for the DNS Server setting (instead
of using the DNS Server’s address), internal DNS queries do not use
the DNS Service Route Configuration if the service route is configured
to use the management interface; instead, internal DNS queries use
the address of the dataplane interface if a dataplane interface
is configured on the DNS proxy object. This also occurs for a virtual
system when the virtual system is configured with a DNS Proxy Object
instead of defaulting to the global Device DNS Server settings. Beginning
with PAN-OS 8.1, when the Device uses a DNS Proxy Object for the
DNS Server setting, internal DNS queries act according to the service
route configuration to use the management interface or the explicitly configured
dataplane interface address, whichever is configured. |
External Dynamic List Service Routes | When an External Dynamic List service route
is configured to use default values, a user-defined Palo Alto Networks
service route configuration takes precedence (introduced in PAN-OS
8.0). The EDL service route takes precedence only when it
has been explicitly configured. If both service routes are configured
to use defaults, the management port is used to retrieve EDL updates. |
Dynamic IP and Port NAT Oversubscription | Beginning with PAN-OS 8.1.0, the default setting
of the Dynamic IP and Port (DIPP) NAT oversubscription rate changed
from 1 to 2 on the VM-100 and VM-200 firewalls. |