We introduced BGP Filtering and Route Metric Support on Service Connections in Prisma Access. With this feature, you gain precise control over your network's routing behavior with our enhanced BGP filtering and route metric support. This feature enables you to implement sophisticated routing policies, optimize traffic flow, and strengthen your security posture. By integrating seamlessly with our industry-leading security platform, you can now fine-tune BGP operations while maintaining robust threat prevention.

Colo-Connect handles interregion traffic with a focus on high performance and scalable network solutions, ensuring seamless operation even if a compute location becomes unavailable. To address this need, we have implemented an interregion connectivity feature. This feature enables Colo-Connect instances across different regions to be interconnected and provides robust disaster recovery capabilities between regions.

Interregion support provides you with:

Explicit Proxy expands its support to include DNS Proxy customization. Explicit Proxy supports DNS settings such as regional DNS, custom DNS and so on. You can also use a third-party DNS resolver or an on-premises DNS resolver to resolve public and private apps and can use per FQDN. This functionality is now supported on Panorama Managed Prisma Access.

We introduced the ability to extend Prisma Access user group policy with the short form format. Migrating security policies from NGFW to Prisma Access requires policy elements standardization. Prisma Access only supports long-form DN entries for group-based policies, while the NGFW allows using other formats such as SAML account name/Common Name and email address. This feature enables customers to define the group format choice for security policy creation, allowing standardized policy creation across Prisma Access and NGFW.

Prisma Access supports the Mexico Central compute region.

Explicit proxy extends its support to the following regions:

• Bahrain
• Canada West
• France North
• Ireland
• Sweden
• South Africa West
• United Arab Emirates

Prisma Access 6.0 introduces site-based licensing for Remote Networks, enhancing flexibility and simplifying deployment for branch sites. This licensing model allows you to allocate your sites with predefined bandwidth capacities, ranging from 25 Mbps to 2.5 Gbps. By moving away from aggregate bandwidth-based licensing, you can more easily estimate and allocate resources for your remote sites.

With site-based licensing, you no longer need to pre-allocate bandwidth to specific Prisma Access compute regions or configure redundancy manually. This approach reduces complexity in network planning and provides a more straightforward way to manage and scale your branch sites.

Using this model, you can focus on the number and types of sites needed rather than estimating total bandwidth consumption across your network.

Site-based licensing in Prisma Access aligns better with your organizational structure and growth plans, providing a more intuitive and scalable approach to securing and connecting your branch sites. This licensing model aims to enhance your experience in deploying and managing Prisma Access, offering greater control and efficiency in resource allocation across your distributed network infrastructure.

In addition, there is a simplified onboarding workflow for Prisma Access, guiding you through a step-by-step workflow to configure your remote network setup.

For the Static IP Address Allocation feature for GlobalProtect™ mobile users, Prisma® Access adds the following enhanced functionality:

The Prisma Access onboarding workflow streamlines the onboarding process, guiding you through a step-by-step workflow to configure your Prisma Access setup for:

By incorporating best-practice defaults, automating backend tasks, and seamlessly integrating the Cloud Identity Engine and Strata Cloud Manager with Prisma Access, you can significantly reduce onboarding time. This intuitive, action-oriented approach not only accelerates time-to-value but also reduces onboarding complexity. The result is an unparalleled onboarding experience.

If you have an active WildFire® or Advanced WildFire license, Prisma® Access now supports WildFire Hold Mode. Hold Mode enables you to configure Prisma Access to hold the transfer of a sample file while the real-time signature cloud performs a signature lookup. When the lookup completes, Prisma Access releases the file to the requesting client (or blocks it, based on your organization's security policy for specific WildFire verdicts, preventing the initial transfer of known malware. You can configure Hold Mode on a per antivirus profile basis and apply a global setting for the signature lookup timeout and the associated action.