What happens when the SD-WAN license on firewall expires?

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

What happens when the SD-WAN license on firewall expires?

L1 Bithead

Hello,

 

I not found any information about the SD-WAN license on firewall expires.

Tin Kanitin
1 accepted solution

Accepted Solutions

L1 Bithead

This is what I discovered: https://docs.paloaltonetworks.com/sd-wan/3-2/sd-wan-admin/configure-sd-wan/set-up-panorama-and-firew...

 

If the SD-WAN license expires, the following occurs:

 

  • A warning displays when you Commit any configuration changes but no commit failure occurs.
  • Your SD-WAN configuration no longer functions but is not deleted.
  • Firewalls no longer monitor and gather link health metrics and stop sending monitoring probes.
  • Firewalls no longer send app and link health metrics to Panorama.
  • SD-WAN path selection logic is disabled.
  • New sessions round robin on the virtual SD-WAN interface.
  • Existing sessions remain on the specific link they were on when the license expired.
  • If an internet outage occurs, traffic follows using standard routing and ECMP if configured.

Tin Kanitin

View solution in original post

4 REPLIES 4

Community Team Member

Hi @Tinkani ,

 

For Palo Alto license expiration, some subscriptions continue to function in a limited capacity, and others stop operating completely.The grace period for Prisma SD-WAN Subscriptions is 30 days. 

LIVEcommunity team member
Stay Secure,
Jay
Don't forget to Like items if a post is helpful to you!

Please help out other users and “Accept as Solution” if a post helps solve your problem !

Read more about how and why to accept solutions.

L3 Networker

Can you tell me , what is limited capacity?

Sachin garg
Technical consultant

L0 Member

Have you found the answer to this question?

L1 Bithead

This is what I discovered: https://docs.paloaltonetworks.com/sd-wan/3-2/sd-wan-admin/configure-sd-wan/set-up-panorama-and-firew...

 

If the SD-WAN license expires, the following occurs:

 

  • A warning displays when you Commit any configuration changes but no commit failure occurs.
  • Your SD-WAN configuration no longer functions but is not deleted.
  • Firewalls no longer monitor and gather link health metrics and stop sending monitoring probes.
  • Firewalls no longer send app and link health metrics to Panorama.
  • SD-WAN path selection logic is disabled.
  • New sessions round robin on the virtual SD-WAN interface.
  • Existing sessions remain on the specific link they were on when the license expired.
  • If an internet outage occurs, traffic follows using standard routing and ECMP if configured.

Tin Kanitin
  • 1 accepted solution
  • 2991 Views
  • 4 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!