This page helps you to create a traffic object with specific cloud assets and map the traffic object to a zone. Attach the zone to a security policy to enforce the policy rules on the AI traffic sourced from this zone.

This feature is part of the Prisma AIRS licensing. The AI traffic from the zone is routed to Prisma AIRS AI Runtime: Network intercept for inspection.

Configure a Cluster ID in the Kubernetes environment and configure the PAN-CNI plugin on a Kubernetes cluster to allocate the network interfaces on each pod. To configure the PAN-CNI plugin for your Kubernetes cluster, you need three YAML files: `pan-cni-configmap.yaml`, `pan-cni.yaml`, and `pan-cni-multus.yaml`. These files are essential for setting up and managing the PAN-CNI plugin to secure your Kubernetes clusters with the CN-Series firewall.

See Components Required to Secure Kubernetes Clusters with CN-Series Firewall.