Focus

Use Predefined IPSec Templates to Onboard Service and Remote Network Connections

Table of Contents

Filter

Expand All | Collapse All

Prisma Access Docs

Administration
Version
- Prisma Access China
- 4.0 & Later
- 3.2 Preferred and Innovation
- 3.1 Preferred and Innovation
- 3.0 Preferred and Innovation
- 2.2 Preferred
Integrations
Incidents & Alerts
Release Notes
Version
- 5.0 Preferred and Innovation
- 4.2 Preferred
- 4.1 Preferred
- 4.0 Preferred
- 3.2 Preferred and Innovation
- 3.1 Preferred and Innovation
- 3.0 Preferred and Innovation
- 2.2 Preferred

Configure Remote Network and Service Connection Connected with a WAN Link

Onboard a Service Connection or Remote Network Connection Using Predefined Templates

Use Predefined IPSec Templates to Onboard Service and Remote Network Connections

Prisma Access includes predefined IPSec templates for common third-party IPSec and SD-WAN devices. These profiles expedite and simplify the onboarding of service connections and remote network connections that use one of these devices to terminate the connection.

Sharing a common template also allows you to Onboard Multiple Remote Network Connections of the Same Type with commonly-shared cryptos, pre-shared keys, and Peer identifiers.

Onboard a Service Connection or Remote Network Connection Using Predefined Templates

Onboard Multiple Remote Network Connections of the Same Type

Supported IKE and IPSec Cryptographic Profiles for Common SD-WAN Devices

Prisma Access provides you with the following predefined templates that you can use to set up IPSec tunnels between your on-premises device and Prisma Access:

IPSec Tunnels (

Network

IPSec Tunnels

) under Remote_Network_Template and Service_Conn_Template.

IKE Gateways (

Network

Network Profiles

IKE Gateways

) under Remote_Network_Template and Service_Conn_Template.

IPSec Crypto Profiles (

Network

Network Profiles

IPSec Crypto

) under Remote_Network_Template and Service_Conn_Template.

IKE Crypto Profiles (

Network

Network Profiles

IKE Crypto

) under Remote_Network_Template and Service_Conn_Template.

Currently, templates for the following vendors are available:

In addition to the following templates, we provide a Generic template that you can use with any on-premises device that is not listed here.

Cisco appliances:

Cisco Integrated Services Routers (ISRs)

Cisco Adaptive Security Appliances (ASAs)

Citrix

Prisma SD-WAN (formerly CloudGenix)

Riverbed

Silver Peak

Use the following workflows to onboard service connections or remote network connections using the predefined IPSec templates.

Configure Remote Network and Service Connection Connected with a WAN Link

Onboard a Service Connection or Remote Network Connection Using Predefined Templates

Prisma Access Docs

Use Predefined IPSec Templates to Onboard Service and Remote Network Connections

Prisma Access Docs

Use Predefined IPSec Templates to Onboard Service and Remote Network Connections

Recommended For You

Activation & Onboarding

SASE

Cloud-Delivered Security Services

Network Security

Endpoints

Visibility & Monitoring

Best Practices

Experts Corner