Documentation forNetwork Performance Monitor

Palo Alto Networks Prisma SD-WAN

You can enable SD-WAN monitoring on your Prisma SD-WAN (formerly CloudGenix), managed through Strata Cloud Manager. Starting with 2025.1, you can monitor interfaces for edge devices.

For monitored Prisma SD-WAN nodes, you can see orchestrator information. You can use alerts and reports relevant for SD-WAN monitoring.

Monitor SD-WAN edge devices

Add edge devices managed by a monitored Prisma SD-WAN Strata Cloud Manager to get further details via Prisma SD-WAN API.

  • You can display general details, such as edge device name, model, serial number, status, or type.

  • You can display all IP addresses for a specific Prisma SD-WAN device and properly match IPs received in NetFlow data to the node.

  • You can monitor uplinks (WAN interfaces).

  • You can monitor VPN tunnels - the list of tunnels and their status. No further statistics are monitored for tunnels.

    VPN tunnel names are created as follows:

    {Source Interface Name} → {Peer SysName}:{Peer Interface Name}

Monitor Prisma SD-WAN Strata Cloud Manager

  • You can display status and response time, polled via REST (Prisma SD-WAN API).

  • You can display the list of all devices managed by an orchestrator and add them in a simplified discovery as SNMP or API-only nodes.

Prisma SD-WAN setup and monitoring steps

Review the requirements for Prisma SD-WAN devices

Supported edge devices must have one of the following SNMP SysObjectID: 1.3.6.1.4.1.50114.11.1.10 or 1.3.6.1.4.1.50114.11.1.11

For Prisma devices, you can poll edge nodes as SNMP nodes (SNMP and API) or using only API.

  • SNMP nodes poll basic details via SNMP and SD-WAN data via API.

  • API-only nodes use API polling for both basic details and SD-WAN details.

SolarWinds recommends using SNMP polling for basic details. Use API-only polling only if you cannot or do not want to use SNMP. API-only polling provides fewer details.

Polled Details API-Only SNMP and API
Node details via API via SNMP
Node status and response time via API via SNMP
IP addresses via API via SNMP
MAC addresses via API via SNMP
Interfaces via API via SNMP
Other general SNMP details via SNMP
SD-WAN details via API via API
SD-WAN uplinks via API via API
SD-WAN VPN tunnels via API via API
SD-WAN VPN tunnel statistics
CPU &Memory via API via SNMP

Rate limits

A Prisma SD-WAN Strata Cloud Manager is limited to 2,000 requests/minute. By default, SolarWinds Observability Self-Hosted is limited to 20 requests/second. For details, see Prisma SD-WAN API polling limit was exceeded.

Add SD-WAN devices for monitoring in SolarWinds Observability Self-Hosted

To monitor SD-WAN, add the Prisma SD-WAN Strata Cloud Manager as a node, and then add edge devices.

Each monitored Prisma SD-WAN Strata Cloud Manager orchestrator uses a node license.

Add Prisma SD-WAN Strata Cloud Manager

  1. Log in to the SolarWinds Platform Web Console as an administrator.

  2. Click Settings > Manage Nodes, and then click Add a Node.

  3. In Polling Method, select Orchestrators: API.

  4. Under Orchestrators, select Prisma Devices.

  5. Type your Prisma SD-WAN credentials into Client ID, Client Secret, and TSG ID fields and test the credentials.

    These details are generated when you create a service account for your tenant. See Add a Service Account... in Palo Alto documentation.

  6. Review and adjust the device properties.

    1. Review your credentials and proxy settings.

    2. To edit how often the node status, or monitored statistics are updated, change the values in the Polling area.

      For critical nodes, you may need to poll status information or collect statistics more frequently than the default polling intervals.

    3. Enter values for custom properties for the node.

      The Custom Properties area is empty if you have not defined any custom properties for monitored nodes. See "Add custom properties to nodes" in the SolarWinds Platform Administrator Guide.

    4. To adjust when the status of the node changes to Warning or Critical, edit alerting thresholds for the metric. Select the Override box and set thresholds for the node.

  7. Click OK, Add Node.

The Strata Cloud Manager is now monitored as an SD-WAN orchestrator. Add connected devices to complete the SD-WAN configuration.

Add devices connected to the Strata Cloud Manageras SNMP nodes

When you have added the Strata Cloud Manager for monitoring, you need to add edge devices you want to monitor.

  1. In SolarWinds Platform Web Console, click Settings > Manage Nodes.

  2. On the Manage Nodes view, click the added orchestrator node.

  3. On the SD-WAN Orchestrator Details view, click Discover Prisma Devices in the Management widget.

  4. Select that you want to monitor edge devices as SNMP nodes and click Continue. Network Sonar Wizard will be launched automatically.

  1. In Network Sonar Discovery, review the hostnames and IP addresses received from the orchestrator. Include only the devices you want to monitor and click Next.

  2. On SNMP, make sure SNMP credentials for the devices are listed and click Next. If appropriate credentials are not listed, click Add New Credential, and define a new set.

  3. Complete the wizard by clicking Discover on the last tab. The wizard searches your network for the hostnames/IP addresses.

  4. Discovered devices are listed in the Network Sonar Results wizard. Complete the wizard to add the devices for monitoring.

When you finish the wizard, go to the SD-WAN Orchestrator Details page (Settings > Manage Nodes > click the orchestrator node). After the next poll, the page will display data not only for the orchestrator, but also for monitored edge devices.

Add devices connected to the Strata Cloud Manager as API-only nodes

When you have added the Strata Cloud Manager for monitoring, you need to add edge devices you want to monitor.

  1. In SolarWinds Platform Web Console, click Settings > Manage Nodes.

  2. On the Manage Nodes view, click the added orchestrator node.

  3. On the SD-WAN Orchestrator Details view, click Discover Prisma Devices in the Management widget.

  4. Select that you want to monitor Prisma SD-WAN devices as API-only nodes and click Continue. Network Sonar Wizard will be launched automatically.

  5. Complete the wizard by clicking Discover on the last tab. The wizard discovers the devices based on Prisma SD-WAN API.

  6. Discovered devices are listed in the Network Sonar Results wizard. Complete the wizard to add devices for monitoring.

When you finish the wizard, go to the SD-WAN Orchestrator Details page (Settings > Manage Nodes > click the orchestrator node). After the next poll, the page will display data not only for the orchestrator, but also for monitored edge devices.

Add interfaces for Prisma devices already monitored as API-only nodes

When you have added the Strata Cloud Manager and its edge devices as API-only nodes and want to also monitor interfaces on these devices, re-run the discovery, and import interfaces for monitoring. Repeat steps in Add devices connected to the Strata Cloud Manager as API-only nodes.

Configure SD-WAN monitoring on edge devices already monitored with SolarWinds Platform

If you monitored SD-WAN edge devices in a previous version using SNMP and upgraded to SolarWinds Observability Self-Hosted, add the Strata Cloud Manager for monitoring to automatically pair edge devices with it.

View SD-WAN data for your environment

When you enable SD-WAN polling for a Strata Cloud Manager and click it, the SD-WAN Orchestrator Summary page opens.

By default, it includes widgets you can use to manage the device, view the device details, active alerts, latest events, or AppStack for the device.

Edge Devices

This widget lists device names, IP addresses, models, serial numbers and network IDs of edge devices paired with the orchestrator.

Orchestrator Inventory

This widget displays a list of devices connected to managed orchestrators. Devices managed by SolarWinds Observability Self-Hosted are marked in the Managed by Platform column.

To add unmanaged devices, click the Discover Prisma Devices button and add them for monitoring.

SD-WAN Map

This widget is available on Orchestrator views. It displays connections between monitored devices on the network. For directly connected devices, you can also see used interfaces.

VPN Connections

On SD-WAN Orchestrator views, this widget displays VPN tunnels for all edges paired with the orchestrator.

On an edge Node Details view, the widget displays VPN tunnels for the edge.

This widget is not displayed by default. See Add widgets to SolarWinds Platform views.

VPN Tunnels

On SD-WAN Orchestrator views, this widget displays VPN tunnels and their metrics for all edges paired with the orchestrator.

On an edge Node Details view, the widget displays VPN tunnels and their metrics for the edge.

WAN UpLinks

On SD-WAN Orchestrator views, this widget displays WAN uplinks for all edges paired with the orchestrator.

On an edge Node Details view, the widget displays WAN uplinks for the edge.