Anyone with exp in PAN-OS SD-WAN without panorama for VPN S2S Dual ISP ?

Hi PANGURUS-community, how's it going ?

Does anyone have operational functional experience of pan-os sdwan ( firewall sdwan without panorama and without cloudgenix appliances ) deployments operating and running sites with two ISPs for IPSEC S2S VPN connections.

Today we have operating only pan-os sdwan for internet outbound, with 2 unified links, operating well, however with limitations but it works and good well.

Now thinking of moving to VPN S2S using pan-os sdwan scheme, anyone has experience of deployment in their environments ? if it operates correctly ? Points, tips, points to focus on, recommendations, headaches, etc. If you have had any unexpected problems, what has been your feedback, your experience operating between HQ to VPN S2S branches of at least 5, 10 or more pan-os sites between your PANW firewalls of branches against the HQ.

Thank you for your kindness, kindness, your time and collaboration

Best Regards

Comments (1)

CyberforceZero

Apr 28

Hi MetgatzGR,

They say that SDWAN can't be done without Panorama because if you have S2S VPN, each side needs to know the other's info such as tunnel interface IPs. This comes from Panorama, there's no other easy way to have each site know about each other. Unless you're running the SDWAN in some very limited way?