Creating secure tunnel connections when users are within internal corporate networks can be redundant and reduce network performance. Internal Host Detection in Prisma® Access Agent provides intelligent network awareness by automatically identifying whether a client device is connected to the corporate internal network or an external network, enabling seamless connection management and optimized security policies.

The Internal Host Detection feature of Prisma Access Agent is now supported on iOS, Android, and ChromoeOS endpoints as well. The feature monitors network connectivity using reverse DNS lookup of internal domains and based on this real-time network assessment, Prisma Access Agent automatically determines the best way to achieve secure connectivity without user intervention.

When an endpoint is detected on the internal corporate network, the secure tunnel is automatically suppressed to prevent unnecessary connections and rely on the internal network to provide security and private app access. Conversely, when the endpoint moves to an external network, the tunnel automatically reconnects to maintain security protection. This automated behavior optimizes network performance and ensures users remain protected, without requiring manual end-user intervention.