Prisma Access
Default Routes with Traffic Steering and Dedicated Service Connection Example
Table of Contents
Default Routes with Traffic Steering and Dedicated Service Connection Example
Use traffic steering with default routes and a dedicated
service connection.
| Where Can I Use This? | What Do I Need? |
|---|---|
|
|
In this example, in addition to the previous configuration, you
have a third-party internet security service, and you want to send
traffic from box.com to be processed by the security service before
egressing to the internet. You do not want to send any other internet-bound
traffic to the security service; for this reason, you create a dedicated
service connection for the box.com traffic. After your configuration
is complete, Prisma Access sends *.box.com destination traffic to
the stack.
To enable this deployment, you perform the following actions
in the Traffic Steering tab:
- Create a Target Service Connection group that assigns one or more service connections to the target and select Dedicated for Traffic Steering Only, which makes the target service connection or connections dedicated.If you create a target with more than one service connection, Prisma Access chooses the best service connection to forward the internet-bound traffic.
![]()
- Create a traffic steering rule that forwards traffic to the URL. The following screenshot shows the traffic destination being assigned a custom URL category that contains the URL *.box.com.
![]()
- Create an Action in the traffic steering rule of Forward to the target and specify the target group name you created (dedicated in this case).
![]()
