Focus

Prisma SD-WAN

Known Issues in Prisma SD-WAN ION Releases

Table of Contents

Filter

Expand All | Collapse All

Activation & Onboarding
Administration
Select a Document
- New Features Guide
CloudBlades
Select a Document
- CloudBlade Integrations
- CloudBlades Integration with Prisma Access
Deployment
Incidents & Alerts
Reference
Release Notes
Select a Document
- 6.5
- 6.4
- 6.3
- 6.2
- 6.1
- 5.6
- New Features Guide
- On-Premises Controller
- Prisma SD-WAN CloudBlades
- Prisma Access CloudBlade Cloud Managed
- Prisma Access CloudBlade Panorama Managed

Learn about the known issues in Prisma SD-WAN ION Releases.

This table lists known issues across Prisma SD-WAN ION releases.

Known Issues in Release 6.5.2

This table lists known issues in Prisma SD-WAN ION releases 6.5.2.

Issue ID	Description
CGSDW-33237	After upgrading to ION device 6.x with DPDK, higher control plane latency is observed, primarily because deeper Rx MAC and Intercore FIFOs introduce head-of-line blocking, particularly impacting applications during high-rate scan traffic.
CGSDW-31654 This issue is resolved in ION version 6.4.2-b16.	FC crashes at pan_sml_vm_set_field_flag() within the ml7 library.
CGSDW-30788 This issue is resolved in ION version 6.5.3.	fp-rte corefile is generated in asymmetric LAN flow with specific policy.
CGSDW-30747	After adding or removing Prisma Access tags from site configurations, or removing circuit tags from physical interfaces, the charon process restarts, unexpectedly triggering an HA switchover, which disrupts customer operations, particularly when rebuilding PA tunnels or migrating branches between regions.
CGSDW-29960	If overlapping IP addresses are configured on a branch site, syslogs are not visible on the DC ION.
CGSDW-29923	The SNMPWALK command from the DC server does not work if overlapping IP addresses are configured on the branch site.
CGSDW-26342	Prefixes received from a DC on the WAN path are being distributed back to the DC via the Standard VPN path causing a traffic loop. The workaround is to configure a prefix list which explicitly denies the prefixes coming from the DC on the Standard VPN.
CGSDW-26096	A standby DC ION in a DC cluster does not forward the received traffic on the intra-cluster tunnel.

This table lists known issues in Prisma SD-WAN ION releases 6.5.1.

Issue ID	Description
CGSDW-33237	After upgrading to ION device 6.x with DPDK, higher control plane latency is observed, primarily because deeper Rx MAC and Intercore FIFOs introduce head-of-line blocking, particularly impacting applications during high-rate scan traffic.
CGSDW-31654 This issue is resolved in ION version 6.4.2-b16.	FC crashes at pan_sml_vm_set_field_flag() within the ml7 library.
CGSDW-30788 This issue is resolved in ION version 6.5.3.	fp-rte corefile is generated in asymmetric LAN flow with specific policy.
CGSDW-30747	After adding or removing Prisma Access tags from site configurations, or removing circuit tags from physical interfaces, the charon process restarts, unexpectedly triggering an HA switchover, which disrupts customer operations, particularly when rebuilding PA tunnels or migrating branches between regions.
CGSDW-29960	If overlapping IP addresses are configured on a branch site, syslogs are not visible on the DC ION.
CGSDW-29923	The SNMPWALK command from the DC server does not work if overlapping IP addresses are configured on the branch site.
CGSDW-26342	Prefixes received from a DC on the WAN path are being distributed back to the DC via the Standard VPN path causing a traffic loop. The workaround is to configure a prefix list which explicitly denies the prefixes coming from the DC on the Standard VPN.
CGSDW-26096	A standby DC ION in a DC cluster does not forward the received traffic on the intra-cluster tunnel.