Hybrid SASE Branch Failover
Hybrid SASE Failover routes internal private resource traffic between Prisma Access and SD-WAN branch devices based on real-time path quality metrics.
Hybrid SASE Failover routes internal private
resource traffic between
Prisma Access and
SD-WAN branch devices
based on real-time path quality metrics. This feature ensures continuous connectivity
for private applications during path degradation.
Branches exchange Prisma hub connectivity status with each other using SD-WAN probes. This provides a real-time view of SASE path health across
the SD-WAN fabric to inform routing decisions.
- Supports various traffic distribution profiles, including top-down, best available path, and weighted distribution, for flexible traffic steering.
- Achieves this by nesting the Prisma Access Virtual Interface (VIF) within branch VIFs.
- Automatically fails over traffic to the best available path directly to the branch if paths to Prisma Access become unqualified due to poor quality.
- Restores traffic back to Prisma Access paths when they recover, ensuring resilience and efficient resource utilization.
- Crucial for robust SD-WAN solutions for private applications, particularly in full-mesh topologies, where it also supports failover for internet traffic using DIA anypath with a central Activation Console, ensuring seamless connectivity and an improved user experience.
