Focus

Prisma Access

Explicit Proxy Forwarding Profiles

Table of Contents

Filter

Expand All | Collapse All

Prisma Access Docs

Administration
Version
- Prisma Access China
- 4.0 & Later
- 3.2 Preferred and Innovation
- 3.1 Preferred and Innovation
- 3.0 Preferred and Innovation
- 2.2 Preferred
Integrations
Incidents & Alerts
Release Notes
Version
- 5.1 Preferred and Innovation
- 5.0 Preferred and Innovation
- 4.2 Preferred
- 4.1 Preferred
- 4.0 Preferred
- 3.2 Preferred and Innovation
- 3.1 Preferred and Innovation
- 3.0 Preferred and Innovation
- 2.2 Preferred

How Explicit Proxy Identifies Users

PAC File Guidelines

Explicit Proxy Forwarding Profiles

Use Explicit Proxy Forwarding Profiles to create easy-to-use forwarding rules to define the direction of web traffic or deploy multiple PAC files at once.

Where Can I Use This?	What Do I Need?
Prisma Access (Managed by Strata Cloud Manager) Strata Cloud Manager	Prisma Access Mobile Users license

For now, this feature is available by request only. Please reach out to your account team to have it activated.

Explicit Proxy Forwarding Profiles enable you to employ multiple PAC files to define which traffic to forward to

Prisma Access

. Forwarding Profiles also give you the option to create easy-to-use forwarding rules instead of dealing with the complexity of authoring and maintaining a PAC file.

Use Forwarding Profiles to Define Multiple PAC Files

Define Which Traffic to Forward to Explicit Proxy with Forwarding Rules

Attach Forwarding Profiles to GlobalProtect App Configuration

Use Forwarding Profiles to Define Multiple PAC Files

Forwarding Profiles enable you to use multiple PAC files in your deployment simultaneously so that you can define which traffic to forward to

Prisma Access

Create a Forwarding Profile.

From

Strata Cloud Manager

, select

Workflows

Prisma Access Setup

Mobile Users

Forwarding Profiles Setup

Add Forwarding Profile

Select

PAC File

is for basic

Prisma Access

Explicit Proxy.

GlobalProtect Proxy

is for using GlobalProtect in Proxy Mode.

Upload a PAC file.

Select

Upload PAC File

Browse file

to browse your file system for the PAC file.

Save

the profile.

Repeat the two previous steps to create another Forwarding Profile with a different PAC file.

Both PAC files are now operating in your deployment simultaneously.

(Optional) Retrieve the PAC file URL.

Return to the profile to which you uploaded the PAC file.

You should see the URL where the PAC file is hosted.

(Optional) Edit the PAC file.

To quickly make changes to the PAC file, You can edit it directly within the web interface

From within the Forwarding Profile,

Edit PAC File

Make changes and

Save

Define Which Traffic to Forward to Explicit Proxy with Forwarding Rules

Instead of authoring your own PAC file from scratch, you can create simple forwarding rules to generate a PAC file.

Create a Forwarding Profile.

From

Strata Cloud Manager

, select

Workflows

Prisma Access Setup

Mobile Users

Forwarding Profiles Setup

Add Forwarding Profile

Select

PAC File

is for basic

Prisma Access

Explicit Proxy.

GlobalProtect Proxy

is for using GlobalProtect in Proxy Mode.

Add a forwarding rule.

Select

Add

Complete the required fields:

Name	Name of the profile.
User Locations	Location of the users for which you're creating the forwarding rule. You can create custom locations from Workflows `Prisma Access` Setup Mobile Users Forwarding Profiles Setup User Locations . You can't use wildcard characters when configuring custom user locations based on IP address.
Destinations	Destination of the web traffic. You can select from predefined destinations, or you can create custom destinations from Workflows `Prisma Access` Setup Mobile Users Forwarding Profiles Setup Destinations .
Connectivity	Direct causes the traffic to bypass the proxy. Global Proxy causes the traffic to pass through the proxy.

Select

Add

when done.

Save

the profile with the forwarding rule you created.

The profile appears in your list of Forwarding Profiles. When you open it, you will see a URL to the PAC file generated from the rule.

View PAC file

to see its contents.

Attach Forwarding Profiles to GlobalProtect App Configuration

You can use Forwarding Profiles to simplify configuration of your GlobalProtect App proxy.

Create a Forwarding Profile.

From

Strata Cloud Manager

, select

Workflows

Prisma Access Setup

Mobile Users

Forwarding Profiles Setup

Add Forwarding Profile

Select

GlobalProtect Proxy

Configure the Forwarding Profile by uploading a PAC file or creating forwarding rules.

Add the Forwarding Profile to your

GlobalProtect app

proxy configuration.

Select

Workflows

Prisma Access Setup

GlobalProtect

GlobalProtect App

Select a configuration file.

Under App Configuration,

Show Advanced Options

Expand

Proxy

settings.

Select either

Proxy

Tunnel and Proxy

depending on your GlobalProtect Agent mode

You can not add a Forwarding Profile if you select

Tunnel

mode.

Select

Forwarding Profiles

and choose the Forwarding Profile you wish to use.

Save

your changes.

Select

Push Config

Push

How Explicit Proxy Identifies Users

PAC File Guidelines

Prisma Access Docs

Explicit Proxy Forwarding Profiles

Prisma Access Docs

Explicit Proxy Forwarding Profiles

Use Forwarding Profiles to Define Multiple PAC Files

Define Which Traffic to Forward to Explicit Proxy with Forwarding Rules

Attach Forwarding Profiles to GlobalProtect App Configuration

Recommended For You

Activation & Onboarding

SASE

Cloud-Delivered Security Services

Network Security

Endpoints

Visibility & Monitoring

Best Practices

Experts Corner