Implementing SD-WAN for the first time. The config commits ok and pushes to hub firewalls ok, but on branches I get that generic error "Failed to autogenerate SDWAN configuration". I looked in configd and I see:
Error: pan_cfg_pushtpl_autogen_config_merge(pan_cfg_templates.c:7060): Zones node or zone map hash not found for sd-wan zone mapping <---- ** NOTE, I get this same line on the hub logs also and they work fine **
File "/opt/pancfg/mgmt/transforms/cluster-gen.py", line 1896, in <module>
if xml_to_file(gen_auto_config(root, tpl_config), xml_outfile, True) < 0:
File "/opt/pancfg/mgmt/transforms/cluster-gen.py", line 1658, in gen_auto_config cluster_name)
File "/opt/pancfg/mgmt/transforms/cluster-gen.py", line 1409, in auto_gen_helper peer_interface, peer_info, cluster_name)
File "/opt/pancfg/mgmt/transforms/cluster-gen.py", line 481, in gen_ike_gateway peer_info, local_interface, peer_interface)
File "/opt/pancfg/mgmt/transforms/cluster-gen.py", line 391, in __get_ip_address_nodes xml_add_child(peer_address_node, xml_new_node("fqdn", gen_fqdn(peer_interface, peer_info)))
File "/opt/pancfg/mgmt/transforms/cluster-gen.py", line 72, in gen_fqdn tenant_id = retrieve_tenant_id()
File "/opt/pancfg/mgmt/transforms/cluster-gen.py", line 43, in retrieve_tenant_id raise Exception("Unable to update tenant ID SDB. Exiting...")
I DO already have the 4 reserved zone names defined, and they are layer3 as they should be.
Trying to figure out the problem, but I wish I could see those scripts to figure out what line 1896 is trying to do.
Are there any additional logs I don't know about? Any suggestions appreciated.
Using PAN-OS 10.2.3 and SD-WAN plugin 3.0.3
I was scratching my head why the Branch failed getting configuration push, because the HUB was on DHCP. Crazy when one device fail because an issue on the other