>
    Monitor ZTNA Connector
    Focus
    Download PDF
    Focus
    1. Home
    2. Prisma Access
    3. Prisma Access ZTNA Connector
    4. Monitor ZTNA Connector
    Download PDF
    Prisma Access

    Monitor ZTNA Connector

    Table of Contents

    Monitor ZTNA Connector

    Learn how to monitor ZTNA Connector.
    Where Can I Use This?
    What Do I Need?
    • Prisma Access (Managed by Strata Cloud Manager)
    • Prisma Access (Managed by Panorama)
    • Prisma Access
       4.0
      Prisma Access
       5.0 supports wildcards and IP subnet-based app targets.
      Prisma Access
       5.0.1 supports associating multiple connector groups with FQDN Targets and Wildcard Targets and introduces proximity-based application routing.
    • ZTNA Connector add-on license
      The Business license with the add-on license includes eight ZTNA Connectors, 100 FQDN, and four IP subnet functionality.
      The Business Premium license with the add-on license includes 40 ZTNA Connectors, 300 FQDN, and unlimited IP subnet functionality.
      The Advanced license with the add-on license has unlimited ZTNA Connectors, FQDN, and IP subnet functionality.
    • If you don't purchase the ZTNA Connector add-on license,
      Prisma Access
       licenses include 20 apps, two connectors, and four IP subnets. This functionality is provided for the purpose of trying out ZTNA Connectors in your environment.
    All of the ZTNA Connector components provide clear status information, logs, and diagnostic tools to help you troubleshoot any issues that arise. Use the following tools to monitor your ZTNA Connector deployment.
    • View the status of your applications and Connectors from within the Prisma SASE platform.
      • Select
        Settings
        ZTNA Connector
        Application Targets
         and verify that the
        Status
         of all Application Targets is
        Up
        .
        If you're using Strata Cloud Manager, go to
        Workflows
        ZTNA Connector
        Application Targets
        .
        If the status shows
        Down
        , the Connector can't reach your application. After you fix the issue with the application, click the refresh status button in the
        Action
         column and verify that the
        Status
         changes to
        Up
         (the status automatically refreshes once per minute).
        The status is also Up if the application is reachable from ZTNA connector (using the last successful DNS resolution result) but the DNS resolution of the Application FQDN fails from the ZTNA connector.
      • Select
        Settings
        ZTNA Connector
        Connectors
         and make sure the
        Status
         of all Connectors is
        Up
        .
        If you're using Strata Cloud Manager, go to
        Workflows
        ZTNA Connector
        Connectors
        .
        If the
        Status
         shows
        Tunnel Down
        , it indicates that the IPSec tunnel between the Connector VM and
        Prisma Access
         is down. If the
        Status
         shows
        Connection Down
         it indicates that the Connector VM is down. Click the diagnostics icon to launch a remote shell connection to the Connector troubleshoot the issue. You can run a
        ping
        ,
        traceroute
        , or
        nslookup
         to help you diagnose the connectivity issue.

    Recommended For You

    © 2024 Palo Alto Networks, Inc. All rights reserved.