Prisma Access
Use a Service Connection to Enable Access between Mobile Users and Remote Networks
Table of Contents
Use a Service Connection to Enable Access between Mobile Users and Remote Networks
Enable a connection between Mobile Users and Remote Networks with service
connections.
| Where Can I Use This? | What Do I Need? |
|---|---|
|
|
To configure a service connection to connect mobile users and remote networks,
Add a service connectionusing the
following values:
- Specify a Region that is close to your mobile users.
- Add an IPSec Tunnel and IKE Gateway, using placeholder values.
- Add placeholder Corporate Subnets.Since Prisma Access doesn’t route any traffic through this tunnel, any value that does not conflict or overlap with other configured subnets is valid.
The following example shows a Prisma Access deployment with mobile users in different
geographical areas and remote networks. The remote network connections are connected in
a mesh network in the Prisma Access infrastructure, but the mobile users cannot connect
to the remote networks. In addition, the mobile users in different geographic areas
cannot connect to each other without a service connection.
After you add a service connection, the service connection connects the mobile users and
the remote networks in a hub-and-spoke network.
Another case where a service connection of this type is useful is when the service
connection is far from the mobile users. The following figure shows an example of this
network deployment.
Adding a second service connection that is closer to the mobile users creates a more
efficient network between the mobile users and remote networks.