Autonomous Digital Experience Management (ADEM) is enhanced to monitor LAN health with synthetic tests, even when the GlobalProtect app is configured to block direct access to the local network. This functionality provides the flexibility to maintain the security posture of blocking direct local network access without sacrificing ADEM's critical visibility into LAN performance. You can explicitly configure ADEM to monitor LAN health when the local network access is blocked. When ADEM detects the direct access to local network is disabled in the GlobalProtect app, the ADEM agent runs separate, dedicated processes to collect LAN metrics using TCP connections. Ensure to allowlist these processes in your GlobalProtect app to enable the agent to collect LAN metrics.