Remote Networks: IPSec Termination Nodes and Service Endpoint
Addresses
Learn about IPSec termination nodes for Prisma Access
remote network deployments that allocate bandwidth by location.
Where Can I Use
This?
What Do I Need?
Prisma Access (Managed by Panorama)
Prisma Access license
When you onboard a remote network, you associate it with an IPSec Termination
Node, and each IPSec termination node has a Service Endpoint Address
associated with it. You use this address (either an
FQDN or an IP address) as the peer IP address for your CPE when you set up the
IPSec tunnel for the remote network connection. Each termination node can provide you up
to 1,000 Mbps of bandwidth. Associating more than 1,000 Mbps of bandwidth to a compute
location provides you with more than one Service Endpoint
Address.
When you onboard a remote network in an Ireland compute location,
you are given a choice of two IPSec termination nodes, because the
total bandwidth is more than 1,000 Mbps.
Each IPSec termination node has its own Service
Endpoint Address, as can be seen in PanoramaCloud ServicesStatusNetwork DetailsRemote Networks.