Use the GlobalProtect feature to isolate and add compromised
devices to a quarantine list.
Each Prisma
Access mobile user location sends and receives its quarantine information
between the Panorama that manages Prisma Access and its nearest
service connection. If you have next-generation firewalls or gateways,
you should have the service connection redistribute the quarantine
list information to and from Panorama and the on-premise firewalls
or gateways. You should also redistribute the quarantine list information
from Panorama to the service connection to ensure consistent policy
enforcement for all mobile user locations (gateways) in Prisma Access.