Autonomous Digital Experience Management (ADEM) is enhanced to
monitor LAN health with synthetic tests,
even when the GlobalProtect app is configured to block direct access to the local
network. This functionality provides the flexibility to maintain the security
posture of blocking direct local network access without sacrificing
ADEM's critical visibility into LAN performance. You can
explicitly configure
ADEM to monitor LAN health when the local
network access is blocked. When
ADEM detects the direct access to
local network is disabled in the GlobalProtect app, the
ADEM
agent runs separate, dedicated processes to collect LAN metrics using TCP
connections. Ensure to allowlist these processes in your GlobalProtect app to enable
the agent to collect LAN metrics.