ATTENTION Customers, All Partners and Employees: The Customer Support Portal (CSP) will be undergoing maintenance and unavailable on Saturday, November 7, 2020, from 11 am to 11 pm PST. Please read our blog for more information.
Any pointers appreciated on this. We have connectivity to Prisma via IPsec without a Cisco VTI/tunnel interface. I would like to change this so that we use Cisco VTI/tunnel at the remote access site. How do I create a VTI in Prisma access for an IPsec tunnel to a remote access network Cisco site? I am expecting somewhere to apply ip address 10.1.1.238 255.255.255.252 within Prisma so that I can ping this address from the Cisco remote access site, but it is eluding me. Is this even possible what I want do to?
Cisco Remote access network site config example is as follows:
description --PA Prisma--
ip address 10.1.1.237 255.255.255.252
tunnel source x.x.x.x
tunnel mode ipsec ipv4
tunnel destination x.x.x.x
tunnel protection ipsec profile PALOPROFILE
Thanks in advance
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!