CloudBlade Unable to Establish Tunnels from Sites with Multiple Standalone ION Devices

CloudBlade Unable to Establish Tunnels from Sites with Multiple Standalone ION Devices

954
Created On 01/08/24 10:20 AM - Last Modified 05/06/24 21:01 PM


Symptom


  • Device is configured with valid Prisma Access tags, configurations, and accessible internet interfaces at the site.
  • The CloudBlade does not initiate any tunnel establishment.
  • The output of dump servicelink summary all command shows empty. 
    ION# dump servicelink summary all
-------------- SERVICE LINKS ----------------------------------
Total      : 0
TotalUP    : 0
TotalDown  : 0
---------------------------------------------------------------
SlDev       SlName                              Status ExtState                  ParentDev LocalIP            Peer               Type    IpsecProfile
---------------------------------------------------------------
  • Monitor within CloudBlades from SD-WAN portal does not display any information regarding the site configured with Prisma Access.

Environment


  • Prisma SD-WAN
  • Prisma Access CloudBlade

Cause


The CloudBlade does not support the building of tunnels from a site that has two (or more) standalone ION devices, which are not in a HA configuration.

Resolution


Set up High Availability and perform verification before configuring the Prisma Access CloudBlade

Additional Information


image.png
 
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000XhRECA0&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail