New Features - Prisma SD-WAN - March 2025

Layer 3 Loopback Interface is a powerful new feature for ION devices that provides a virtual interface that is always up and active after configuration. With this feature you can configure an IP address that is not tied to a physical interface, enabling robust management and troubleshooting capabilities. With Layer 3 Loopback, you can run critical services like SNMP, SSH, and Syslog without relying on physical LAN or WAN interfaces, which may be subject to customer infrastructure changes or security considerations.

The primary use cases for L3 Loopback include management traffic segregation, SD-WAN tunnel establishment over non-routable MPLS WAN interfaces, and enhanced routing protocol support. You can associate the loopback interface with a VRF, allowing you to advertise the loopback IP address within specific VRFs across your fabric. This is particularly useful for service providers who want to create a dedicated management VRF on branch and DC ION devices, effectively separating management traffic from customer data traffic.

By implementing Layer 3 Loopback, you gain greater flexibility in network design and improved resilience for management operations. You can use the loopback interface as a source for IPsec tunnels, providing a stable endpoint for VPN connections. Additionally, the feature supports various routing protocols, including BGP and OSPF, enhancing your ability to advertise and manage routes across your network. With support for both IPv4 and IPv6 addressing, L3 Loopback Interface ensures compatibility with diverse network environments and future-proofs your infrastructure investments.