Hello Team,
On the edge is silver peak (for sdwan) and zscaler( for vpn, secure web traffic,dlp). These solutions are from another partner.
At the core of the network is a CP firewall with sandblast subscription package. We are proposing sandblast agent standard for endpoints. Now, should the endpoints with sandblast agents have their gateways defined on the core firewall vs on the silver peak?
Is additional inspection from the CP firewalls recommended? What are the gains to having/not having the gateway on the firewalls?
