PaloAlto Prisma SD-WAN Bypass pair

PaloAlto Prisma SD-WAN Bypass pair

Palo Alto Networks' Prisma SD-WAN is a comprehensive software-defined wide area networking (SD-WAN) solution. It integrates networking and security functions to deliver secure, dependable, and efficient connection for branch offices and remote sites. 

Prisma SD-WAN improves network performance, improves application experience, and simplifies network administration.

PaloAlto Prisma SD-WAN
Fig 1.1- PaloAlto Prisma SD-WAN 

Prisma SD-WAN Orchestrator is a centralized cloud-based management interface provided by Prisma SD-WAN. It provides a centralized interface for setting, monitoring, and administering SD-WAN infrastructure, allowing administrators to simply deploy and manage many locations.

Prisma SD-WAN interfaces with the Palo Alto Networks security ecosystem, which includes the NGFW and the Prisma Access Secure Access Service Edge (SASE) platform. This integration allows branch offices and remote sites with uniform security rules, threat protection, and secure connection.

Based on real-time network circumstances, Prisma SD-WAN intelligently determines the optimum path for traffic. To maintain optimal performance and dependability, it dynamically responds to changes in network quality, latency, and congestion. It enables you to prioritize key applications, divert traffic according to corporate regulations, and use Quality of Service (QoS) settings to ensure optimal performance for various applications.

Prisma SD-WAN offers detailed visibility into network performance, application use, and security events. It has analytics and reporting features to assist administrators in gaining insights, troubleshooting issues, and making data-driven choices.

Prisma SDWAN Access Key components
Introduction to Palo Alto's Prisma (CloudGenix) SDWAN

PaloAlto Prisma SD-WAN Bypass pair

For branch HA implementations, bypass pairs are often employed to provide device and WAN circuit redundancy. If a device that physically ends the WAN connection fails, the hardware bypass pair allows the ION to continue bridging traffic even if it is turned off. As a result, the second ION device can continue to transmit traffic through the failing ION across that WAN circuit.  

PaloAlto Prisma SD-WAN Bypass pair
Fig 1.2-PaloAlto Prisma SD-WAN Bypass pair

Furthermore, when the site is in Analytics or Control mode, a bypass pair port type enables the transparent insertion of an ION device between Layer 2 and Layer 3 devices at the branch. As a result, proof of concept and migrations are minimally disruptive, needing little to no configuration modifications in the surrounding branch architecture.

Continue Reading...