>
    Strata Copilot
    Enhanced DC Routing Capabilities
    Focus
    Download PDF
    Focus
    1. Home
    2. What's New in the NetSec Platform
    3. What's New in the NetSec Platform
    4. February 2025
    5. Enhanced DC Routing Capabilities
    Download PDF
    What's New in the NetSec Platform

    Enhanced DC Routing Capabilities

    Table of Contents

    Enhanced DC Routing Capabilities

    Prisma SD-WAN now supports the DC routing capabilites: Optimized DC Prefix Advertising, Enhanced Prefix Management, Automated Asymmetry Correction, and Intelligent Traffic Rerouting.
    When you have multiple Branch-to-Data Center (DC) paths, Prisma SD-WAN uses only active paths for traffic. A Branch ION maintains active tunnels to one DC ION and standby tunnels to the second DC ION within the DC ION HA pair. This ensures that backup paths are ready to activate if the active DC ION experiences a link or BGP peer failure, providing uninterrupted service.
    To ensure consistent connectivity, you can enable Host Reachability Tracking to monitor LAN connections. As long as the DC ION can reach the designated IP address, the tunnels on the ION remain active and traffic persists on the active links. If the tracker fails—indicating a loss of IP reachability—the system automatically switches to backup paths, ensuring a prompt and resilient response.
    The enhanced DC Routingcapabilities help you adapt to your network's evolving needs, ensuring it remains efficient and effective.
    Key DC Routing Features
    1. Advertise DC Prefixes: DC Site or ION Devices can now advertise learned prefixes to the overlay Fabric. This allows your branch locations to prioritize traffic through their preferred data center, giving you faster and more reliable connections tailored to your needs.
    2. Manage Prefixes: DC ION Devices can now advertise summary prefixes to the Core network, which helps you address scale limitations. This solution simplifies and scales your network's ability to handle large numbers of prefixes effortlessly.
    3. Correct Asymmetry: Network asymmetry can pose a risk in scenarios where branch traffic routes through Prisma Access or other cloud security platforms. This new functionality automatically detects and corrects asymmetry, ensuring smoother, more balanced traffic flows and compliance with security protocols.
    4. Reroute Traffic: DC ION Devices can detect core network connectivity failures. When an issue arises, traffic is seamlessly redirected to alternative overlay paths within the same data center, maintaining uninterrupted service and enhancing network resilience.

    © 2025 Palo Alto Networks, Inc. All rights reserved.