ZTNA Connector Wildcard and FQDN Support for Applications and Additional Diagnostic
Tools
Learn about the ZTNA Connector enhancements that are supported in Prisma Access
5.0.
ZTNA Connector offers the following enhancements:
Applications Based on Wildcards and IP Subnets—In addition to setting
up applications based on FQDNs, you can set up applications based on FQDN
wildcards and IP subnets.
For wildcard-based apps, you create an FQDN-based connector group, then
specify the wildcard to use (for example, *.example.com) for the app
target.
When users access sites that match the wildcard, those apps
are automatically onboarded for access from ZTNA Connector for your
mobile users and remote network users. For example, given a wildcard
of *.example.com, when users access the app at app1.example.com,
ZTNA Connector automatically allows that app to be accessed for
mobile users and users at remote network sites.
For IP subnet-based apps, you create an IP subnet-based Connector group,
then enter the IP subnet to use for the app target.
Additional Diagnostic Tools—In addition to the existing ZTNA Connector diagnostic tools, more
diagnostic tools are available to help you troubleshoot ZTNA Connector
issues:
Dump Overview—Allows you to collect a dump of the ZTNA
Connector's status.
Packet Captures—Allows you to capture packets from the ZTNA
Connector internal, external, or tunnel interface.
Tech Support—Allows you to generate and download a tech support
file.
FQDN DNS Resolution to Multiple IP Addresses—If an application FQDN
resolves to multiple private IP addresses, the ZTNA connector performs an
application probe to determine the status of all resolved IP addresses and load
balances the FQDN access to multiple resolved IP addresses that have an
application status of Up.
