Changes to Default Behavior in Prisma SD-WAN ION Device Release 5.2.7
Focus
Focus

Changes to Default Behavior in Prisma SD-WAN ION Device Release 5.2.7

Table of Contents

Changes to Default Behavior in Prisma SD-WAN ION Device Release 5.2.7

Learn more about the changes to default behavior in Prisma SD-WAN ION device release 5.2.7.
Keep the following upgrade and downgrade considerations in mind when upgrading or downgrading your devices to and from Release 5.2.7.
  • If you are on a 4.x release, to upgrade to Release 5.2.7, you must first upgrade to Release 5.0.1 or Release 5.0.3.
  • To rollback or downgrade to Release 4.x, you must downgrade first to Release 5.0.3 or Release 5.0.1.
Note the following upgrade considerations per feature.

Prioritized Interface List to Establish Controller Connection

Starting with Release 5.2.7, the Prisma SD-WAN ION will now use the following prioritized interface list when establishing a controller connection:
  1. Controller Port
  2. LAN Interfaces
  3. WAN Interfaces sorted by cost from lowest to highest.

Optimizations to Minimize Application Sessions

Starting with Release 5.2.7, to minimize application sessions using an Layer 3 Failure Path, several optimizations have been performed. These optimizations include:
  • Increasing the VPN-to-VPN asymmetry window from 5 seconds to 120 seconds.
  • In addition to tracking when an active or backup path comes up, the system will periodically attempt to move flows from L3 Failure to active or backup paths every 30 minutes.
  • Moving flows that are on an Layer 3 failure path of any path type (Direct, Prisma SD-WAN VPN, Third-party VPN) to an active or backup path once available. Previously only Layer 3 failure paths of type Prisma SD-WAN VPN would be eligible to move flows to active or backup Prisma SD-WAN VPN paths once available.