Prisma SD-WAN
Configure High Availability
Table of Contents
Configure High Availability
Configure the optional high availability to integrate NGFW and Prisma
SD-WAN.
| Where Can I Use This? | What Do I Need? |
|---|---|
|
|
High Availability is optional for converged SD-WAN functionality. When
creating an High Availability (HA) pair in SCM, ensure at least one of the devices
is in the claimed state.
- Move the device from the available list to cloud-managed devices under the Device Management page in Strata Cloud Manager.Enable Prisma SD-WAN on the two devices to create an HA pair.Move the two devices to the same folder in in SCM.
![]()
From the Overview page, create the HA pair on SCM before assigning the second device to the DC site. This involves selecting primary and secondary devices, configuring control link settings (back-to-back interface IP address), data link settings (session sync interface), and failure conditions.![]()
Push the configuration after creating the HA pair.Configuration is synced on both devices. The primary device becomes active, and the secondary becomes passive. Any push operation for an HA pair sends the job to both devices.Assign the second device to the DC site on the Prisma SD-WAN controller after creating the HA pair. Both devices will then be in an assigned state under the DC site.Ensure both devices are assigned under the same cluster within the site.Continue with configuring interfaces, VRFs, logical routers, zones, traffic objects, circuit attachment, NAT, and policies as described for the single NGFW setup. The configuration will sync between the HA pair.To delete an HA pair, first unassign the backup device from the DC site on the Prisma SD-WAN controller before deleting the HA pair on SCM.
