Remote Networks: IPSec Termination Nodes and Service Endpoint Addresses
Focus
Prisma Access

Remote Networks: IPSec Termination Nodes and Service Endpoint Addresses

Table of Contents

Remote Networks: IPSec Termination Nodes and Service Endpoint Addresses

Learn about IPSec termination nodes for Prisma Access remote network deployments that allocate bandwidth by location.
Where Can I Use This?What Do I Need?
  • Prisma Access (Managed by Panorama)
  • Prisma Access license
When you onboard a remote network, you associate it with an IPSec Termination Node, and each IPSec termination node has a Service Endpoint Address associated with it. You use this address (either an FQDN or an IP address) as the peer IP address for your CPE when you set up the IPSec tunnel for the remote network connection. Each termination node can provide you up to 1,000 Mbps of bandwidth. Associating more than 1,000 Mbps of bandwidth to a compute location provides you with more than one Service Endpoint Address.
When you onboard a remote network in an Ireland compute location, you are given a choice of two IPSec termination nodes, because the total bandwidth is more than 1,000 Mbps.
Each IPSec termination node has its own Service Endpoint Address, as can be seen in PanoramaCloud ServicesStatusNetwork DetailsRemote Networks.