IPSec Termination Nodes Within Prisma (Panorama Managed CloudBlade)
Select IPSec termination nodes within Prisma Access in the aggregate licensing model
for Panorama Managed CloudBlade.
In the Aggregate Bandwidth model in Prisma Access for Networks,
bandwidth is assigned to a compute region within Panorama. This enables deterministic
placement of nodes and computes for the nodes behind a region.
Within the remote networks Bandwidth Allocation in Panorama,
regions are configured to allocate bandwidth for that region.
If looking at two locations, namely US East (purple box), and Europe Central (orange
box), you can see the respective bandwidth allocated for each region as shown below.
The compute instances behind a region are referred to as IPSec Termination Nodes and are visible when
configuring a Remote Network onboarding in Panorama.
Determine Region Bandwidth Utilization
Prior to deploying on any previous IPSec termination nodes, a
utilization of the current region bandwidth if there are preexisting VPN tunnels
should be analyzed. To view the utilization, navigate in Panorama to the following: PanoramaCloud Services MonitorRemote Networks. Select the region of interest; in this example, we will use North
America.
In the subsequent window, click on Bandwidth Usage (10.x
Panorama color scheme makes the tab hard to read) and select the region where you
want to view the performance data.
Select the site where you want to view the performance data. For the given region,
any data if present, will show in a graph, with options to choose for different time
ranges.
When there are no established VPN tunnels, the performance and utilization
numbers won't have any historical data.
