Prisma Access Explicit Proxy Connectivity in GlobalProtect for Always-On Internet Security
Focus
Focus
What's New in the NetSec Platform

Prisma Access Explicit Proxy Connectivity in GlobalProtect for Always-On Internet Security

Table of Contents

Prisma Access Explicit Proxy Connectivity in GlobalProtect for Always-On Internet Security

Learn about using GlobalProtect for explicit proxy in Prisma Access
Prisma Access now supports explicit proxy connectivity for GlobalProtect 6.2. This protects users with always-on internet security while providing on-demand access to private apps through a third-party VPN, GlobalProtect with Prisma Access, or an on-premises NGFW. This capability enables you to:
  • Easily replace 3rd-party proxy solutions
  • Seamlessly coexist with 3rd-party VPN agents
  • Secure internet traffic using browser-based and non-browser-based apps
  • Simplify proxy deployments and enforce User-ID-based policy against all traffic
In addition to Tunnel mode, GlobalProtect Explicit Proxy supports two connectivity methods:
  • Proxy Mode
  • Tunnel and Proxy Mode
Proxy Mode
This connection method enables you to use a 3rd-party VPN agent while still using Prisma Access as a secure web gateway for consistent and superior internet and SaaS security.
Tunnel and Proxy mode
This mode enables you to secure access to the internet and SaaS applications through proxy mode and to secure access to private apps through tunnel mode. Whether or not the GlobalProtect tunnel for private app access is enabled, access to the internet remains secure through the proxy.
Users can access private apps through Prisma Access:
Or through an on-premises firewall:
If you don't require support for explicit proxy or 3rd-party VPNs from the GlobalProtect app, you can continue to deploy GlobalProtect in Tunnel Mode and use the split tunnel functionality to define what traffic you want to secure with Prisma Access, and which traffic can bypass the tunnel.