Tunnel Mode—The default
agent mode for GlobalProtect in Prisma Access. Establishes a tunnel
(IPSec or SSL) to Prisma Access to secure mobile users’ access to
all applications, ports, and protocols, and to get consistent
security whether the user is inside or outside your network.
The GlobalProtect app installed on the users' endpoint secures user
traffic to the internet, SaaS applications, and your internal and
public cloud resources. Deploy the GlobalProtect app to your users
(available for smartphones, tablets, or laptops running Microsoft
Windows, Apple macOS and iOS, Android, Google Chrome OS, and Linux)
so that they can tunnel the traffic to Prisma Access for policy
enforcement and threat prevention. The GlobalProtect app also
provides host information profile (HIP) reporting so that you can
create granular rules based on device state to ensure that endpoints
adhere to your security standards—for example, they are equipped
with the most up-to-date patches, encryption, and virus
definitions—in order to access your most sensitive applications. Or,
to enable secure access to users on unmanaged devices, you can
enable Clientless VPN. Prisma Access dynamically scales in and out
per region based on where your users are at the moment.