Appendix

Enterprise-Level Orchestrator Alerts and Events

Discusses a summary of alerts and events generated within the VeloCloud Orchestrator at the Enterprise level.

The document provides details about all Enterprise-level Orchestrator events. Although these events are stored within the VeloCloud Orchestrator and displayed on the Orchestrator UI, most of them are generated by either an SD-WAN Edge or an SD-WAN Gateway and/or one of its running components (MGD, EDGED, PROCMON, and so on) with the exception of a few which are generated by the Orchestrator itself. You can configure notifications/alerts for events in Orchestrator only.

The following table provides an explanation for each of the columns in the "Enterprise-level Orchestrator Events" table:

Table 1. Column Details
Column name	Details
EVENT	Unique name of the event
DISPLAYED ON ORCHESTRATOR UI AS	Specifies how the event is displayed on the Orchestrator.
SEVERITY	The severity with which this event is usually generated.
GENERATED BY	The SD-WAN component generating the notification can be one of the following: VeloCloud Orchestrator SD-WAN Edge (MGD) SD-WAN Edge (EDGED) SD-WAN Edge (PROCMON)
GENERATED WHEN	Technical reason(s) and circumstances under which this event is generated.
RELEASE ADDED IN	The release this event was first added. If not specified, this event existed prior to release 2.5.
DEPRECATED	Specifies if the event is deprecated from a specific release.

Table 2. Enterprise-level Orchestrator Events
EVENT	DISPLAYED ON ORCHESTRATOR UI AS	SEVERITY	GENERATED BY	GENERATED WHEN	RELEASE ADDED IN	DEPRECATED
EDGE_UP	Edge Up	ALERT	SASE Orchestrator	Edge comes back after losing connectivity with the Orchestrator through heartbeats. 2 consecutive heartbeats by an Edge causes the Orchestrator to change its status to EDGE_UP. The Orchestrator runs a monitor every 15 seconds that will update the status of all Edges.
EDGE_DOWN	Edge Down	ALERT	SASE Orchestrator	Edge loses connectivity with the Orchestrator and fails performing 2 or more consecutive heartbeats. The Orchestrator runs a monitor every 15 seconds that will update the status of all Edges.
LINK_UP	Link Up	ALERT	SASE Orchestrator	A WAN Link returns to a normal functioning state.
LINK_DOWN	Link Down	ALERT	SASE Orchestrator	A WAN Link is disconnected from the Edge or when the Link cannot communicate with the Edge service.
VPN_TUNNEL_DOWN	VPN Tunnel Down	ALERT	SASE Orchestrator	The IPSec tunnel configured from the Edge service to your VPN Gateway cannot be established or if the tunnel is dropped and cannot be re-established.
EDGE_HA_FAILOVER	Edge HA Failover	ALERT	SASE Orchestrator	An HA Edge fails-over to its standby.
EDGE_SERVICE_DOWN	Edge Service Down	ALERT	SASE Orchestrator	The Edge service running on the SD-WAN Edge may be down. This may indicate Edge device failure or failure of network connectivity.
EDGE_CSS_TUNNEL_UP	Edge CSS Tunnel Up	ALERT	SASE Orchestrator	A Cloud Security Service tunnel from Edge is UP.
EDGE_CSS_TUNNEL_DOWN	Edge CSS Tunnel Down	ALERT	SASE Orchestrator	A Cloud Security Service tunnel from Edge is DOWN.
NVS_FROM_EDGE_ TUNNEL_DOWN	NVS From Edge Tunnel Down	ALERT	SASE Orchestrator	A NSD via Edge tunnel is DOWN.
NVS_FROM_EDGE_TUNNEL_UP	NVS From Edge Tunnel Up	ALERT	SASE Orchestrator	A NSD via Edge tunnel is UP.
VNF_VM_DEPLOYED	VNF VM Deployed	ALERT	SASE Orchestrator	An Edge VNF virtual machine gets deployed on to the Edge.
VNF_VM_POWERED_ON	VNF VM Powered ON	ALERT	SASE Orchestrator	An Edge VNF virtual machine gets deployed on to the Edge and is powered on.
VNF_VM_POWERED_OFF	VNF VM Powered OFF	ALERT	SASE Orchestrator	An Edge VNF virtual machine is powered off.
VNF_VM_DEPLOYED_AND_ POWERED_OFF	VNF VM Deployed and Powered OFF	ALERT	SASE Orchestrator	An Edge VNF virtual machine gets deployed on to the Edge and is immediately powered on.
VNF_VM_DELETED	VNF VM Deleted	ALERT	SASE Orchestrator	An Edge VNF virtual machine is removed from the Edge.
VNF_VM_ERROR	VNF VM error	ALERT	SASE Orchestrator	An error occurs during deployment of an Edge VNF virtual machine.
VNF_INSERTION_ENABLED	VNF insertion enabled	ALERT	SASE Orchestrator	Insertion of an Edge VNF virtual machine is enabled on the Edge.
VNF_INSERTION_DISABLED	VNF insertion disabled	ALERT	SASE Orchestrator	Insertion of an Edge VNF virtual machine is deactivated on the Edge.
VNF_IMAGE_DOWNLOAD_ IN_PROGRESS	VNF Image Download In Progress	ALERT	SASE Orchestrator	An Edge VNF virtual machine image download is in progress.
VNF_IMAGE_DOWNLOAD_ COMPLETED	VNF Image Download Completed	ALERT	SASE Orchestrator	An Edge VNF virtual machine image download is completed.
VNF_IMAGE_DOWNLOAD_FAILED	VNF Image Download Failed	ALERT	SASE Orchestrator	An Edge VNF virtual machine image failed to be downloaded on the Edge.
EDGE_BFD_NEIGHBOR_UP	BFD session established to Edge neighbor	INFO	SASE Orchestrator	A BFD session has been established to Edge neighbor.
EDGE_BFD_NEIGHBOR_DOWN	Edge BFD neighbor unavailable	INFO	SASE Orchestrator	A BFD session to Edge neighbor is not established.
EDGE_BFDV6_NEIGHBOR_UP	BFDv6 session established to Edge neighbor	INFO	SASE Orchestrator	A BFDv6 session has been established to Edge neighbor.	4.5
EDGE_BFDV6_NEIGHBOR_DOWN	Edge BFDv6 neighbor unavailable	INFO	SASE Orchestrator	A BFDv6 session to Edge neighbor is not established.	4.5
EDGE_BGP_NEIGHBOR_UP	BGP session established to Edge neighbor	INFO	SD-WAN Edge	A BGP peer establishes tunnel with an SD-WAN Edge.
EDGE_BGP_NEIGHBOR_DOWN	Edge BGP neighbor unavailable	INFO	SD-WAN Edge	The Edge's BGP peer loses tunnel with the Edge.
EDGE_BGPV6_NEIGHBOR_UP	BGPv6 session established to Edge neighbor	INFO	SASE Orchestrator	A BGPv6 session has been established to Edge neighbor.	4.5
EDGE_BGPV6_NEIGHBOR_DOWN	BGPv6 session established to Edge neighbor	INFO	SASE Orchestrator	A BGPv6 session to Edge neighbor is not established.	4.5
GATEWAY_MIGRATION_CREATE	Gateway Migration Created	INFO	SASE Orchestrator	The self-service migration is activated.	4.5.0
GATEWAY_MIGRATION_REMOVE	Gateway Migration Removed	INFO	SASE Orchestrator	The self-service migration is deactivated.	4.5.0
GATEWAY_MIGRATION_ STATE_CHANGE	Gateway Migration State Changed	INFO	SASE Orchestrator	The Gateway migration state is changed from one state to another.	4.5.0
PKI_PROMOTION	Endpoint PKI mode promoted	INFO	SASE Orchestrator	An Edge's PKI mode has been changed from optional to required.
CERTIFICATE_REVOCATION	Certificate revoked	INFO	SASE Orchestrator	Edge certificate revocation occurs intentionally or due to an expired certificate (The latter should rarely happen, given Edge certificates automatically renews after 30 days into the 90 day period).
CERTIFICATE_RENEWAL	Certificate renewal request	INFO	SASE Orchestrator	Edge certificate automatically renews after 30 days into the 90 day period.
UPDATE_EDGE_IMAGE_ MANAGEMENT	Update Edge image management	INFO	SASE Orchestrator	Activates/deactivates management of Edge software images for a customer.
SET_EDGE_SOFTWARE	Updated Edge software image	INFO	SASE Orchestrator	New software image is assigned to the Edge due to an Operator Profile reassignment or change in the software image within the operator profile.
UNSET_EDGE_SOFTWARE	Unset overridden Edge software image	INFO	SASE Orchestrator	Unsetting software image overridden for the Edge and instead assign in the default software image associated with the Operator Profile.
ADD_OPERATOR_PROFILE	Added operator profile	INFO	SASE Orchestrator	A new operator profile has been associated with this enterprise.
REMOVE_OPERATOR_PROFILE	Removed operator profile	INFO	SASE Orchestrator	An existing operator profile has been removed from this enterprise.
ADD_SOFTWARE_IMAGE	Added software image	INFO	SASE Orchestrator	When a new software image is associated to the operator profile for this enterprise.
MODIFY_ASSIGNED_OPERATOR_ PROFILE_LIST	Modified the assigned operator profile list	INFO	SASE Orchestrator	List of operator profiles associated with the Enterprise has been modified.
MODIFY_ASSIGNED_SOFTWARE_ IMAGE_LIST	Modified the assigned software image list	INFO	SASE Orchestrator	List of software images associated with the Enterprise has been modified.
CLOUD_SECURITY_ENABLE	Cloud Security enabled	INFO	SASE Orchestrator	Cloud Security is activated in enterprise's profile or Edge-specific profile
CLOUD_SECURITY_DISABLE	Cloud Security disabled	INFO	SASE Orchestrator	Cloud Security is deactivated in enterprise's profile
CLOUD_SECURITY_ PROVIDER_DELETED	Cloud security provider deleted	INFO	SASE Orchestrator	Cloud Security provider associated with an enterprise's profile has been deleted.
CLOUD_SECURITY_TUNNELING_ PROTOCOL_CHANGE	Cloud Security Tunneling Protocol Change	INFO	SASE Orchestrator	Cloud Security tunneling protocol changes (from IPSEC to GRE or vice versa) in an enterprise's profile
CLOUD_SECURITY_ PROVIDER_ADDED	CLOUD_SECURITY_PROVIDER_ADDED	INFO	SASE Orchestrator	Cloud Security provider associated with an Edge-specific profile has been added.
CLOUD_SECURITY_ PROVIDER_REMOVED	CLOUD_SECURITY_PROVIDER_REMOVED	INFO	SASE Orchestrator	Cloud Security provider associated with an Edge-specific profile has been removed.
CLOUD_SECURITY_ OVERRIDE_ENABLED	CLOUD_SECURITY_OVERRIDE_ENABLED	INFO	SASE Orchestrator	Cloud Security override has been activated in an Edge-specific profile.
CLOUD_SECURITY_ OVERRIDE_DISABLED	CLOUD_SECURITY_OVERRIDE_DISABLED	INFO	SASE Orchestrator	Cloud Security override has been deactivated in an Edge-specific profile.
CREATE_CLOUD_ SERVICE_SITE	Cloud Security Service site creation enqueued	INFO	SASE Orchestrator	An API automation job to create a Cloud Security Service tunnel from Edge has been enqueued.
UPDATE_CLOUD_ SERVICE_SITE	Cloud Security Service site update enqueued	INFO	SASE Orchestrator	An API automation job to update a Cloud Security Service tunnel from Edge has been enqueued.
DELETE_CLOUD_ SERVICE_SITE	Cloud Security Service site deletion enqueued	INFO	SASE Orchestrator	An API automation job to delete a Cloud Security Service tunnel from Edge has been enqueued.
ZSCALER_SUBLOCATION_ ACTION_ENQUEUED	Zscaler Sub Location Edge action enqueued	INFO	SASE Orchestrator	An API automation job for Cloud Security Service Zscaler Sub Location has been enqueued.
EDGE_NVS_TUNNEL_UP	Edge Direct IPsec tunnel up	INFO	SASE Orchestrator	A Cloud Security Service tunnel or NSD via Edge tunnel is up.
EDGE_NVS_TUNNEL_DOWN	Edge Direct IPsec tunnel down	INFO	SASE Orchestrator	A Cloud Security Service tunnel or NSD via Edge tunnel is down.
DIAGNOSTIC_REQUEST	New diagnostic bundle request	INFO	SASE Orchestrator	A new Edge diagnostic bundle is requested by an enterprise or an operator user.
EDGE_DIRECT_SITE_DELETED	Edge direct site deleted	INFO	SASE Orchestrator	A NSD via Edge tunnel has been deleted.
EDGE_DIRECT_ TUNNELS_DISABLED	Edge direct tunnels disabled	INFO	SASE Orchestrator	NSD via Edge deactivated in profile device settings.
EDGE_DIRECT_ TUNNELS_ENABLED	Edge direct tunnels enabled	INFO	SASE Orchestrator	NSD via Edge enabled in profile device settings.
EDGE_DIRECT_TUNNEL_ PROVIDER_DELETED	Edge direct tunnel provider deleted	INFO	SASE Orchestrator	NSD via Edge provider associated with an enterprise's profile has been deleted.
CREATE_NVS_FROM_EDGE_SITE	NSD via Edge site creation enqueued	INFO	SASE Orchestrator	An API automation job to create a NSD via Edge tunnel has been enqueued.
UPDATE_NVS_FROM_EDGE_SITE	NSD via Edge site update enqueued	INFO	SASE Orchestrator	An API automation job to update a NSD via Edge tunnel has been enqueued.
DELETE_NVS_FROM_EDGE_SITE	NSD via Edge site deletion enqueued	INFO	SASE Orchestrator	An API automation job to delete a NSD via Edge tunnel has been enqueued.
ENTERPRISE_ENABLE_VIEW_ SENSITIVE_DATA	View sensitive data privileges granted	INFO	SASE Orchestrator	An enterprise grants privileges to its MSP or the operator to view data (keys) information.
ENTERPRISE_ENABLE_OPERATOR_ USER_MGMT	User management delegated to operator	INFO	SASE Orchestrator	An enterprise has successfully delegated access to operator to manager its users.
ENTERPRISE_DISABLE_ OPERATOR_ACCESS	User management access revoked from operator	INFO	SASE Orchestrator	An enterprise revokes access that was previously delegated to operator to manage its entities.
ENTERPRISE_ENABLE_ OPERATOR_ACCESS	Access delegated to operator	INFO	SASE Orchestrator	An enterprise has successfully delegated access to operator to manager its entities.
ENTERPRISE_ENABLE_ PROXY_ACCESS	Access revoked from operator	INFO	SASE Orchestrator	An enterprise has successfully delegated access to partner to manager its entities.
ENTERPRISE_DISABLE_ PROXY_ACCESS	Access delegated to partner	INFO	SASE Orchestrator	An enterprise revokes access that was previously delegated to partner to manage its entities.
EDGE_TO_EDGE_VPN_DISABLE	Edge to Edge VPN Disabled	INFO	SASE Orchestrator	Edge to Edge VPN associated with an Edge device or its corresponding profile has been deactivated.
EDGE_TO_EDGE_VPN_ENABLE	Edge to Edge VPN Enabled	INFO	SASE Orchestrator	Edge to Edge VPN associated with an Edge device or its corresponding profile has been enabled.
VPN_DISABLE	Cloud VPN disabled	INFO	SASE Orchestrator	Cloud VPN settings associated with an Edge device or its corresponding profile has been deactivated.
VPN_ENABLE	Cloud VPN enabled	INFO	SASE Orchestrator	When cloud VPN settings associated with an Edge device or its corresponding profile has been enabled.
VPN_UPDATE	Cloud VPN updated	INFO	SASE Orchestrator	When cloud VPN settings associated with an Edge device or its corresponding profile has been updated with new modified.
REMOTE_ACTION	Edge remote action	INFO	SASE Orchestrator	A remote action is performed on an online Edge.
RECURRING_REPORT_ERROR	Recurring report error	ERROR	SASE Orchestrator	When recurring report fails.
CREATE_COMPOSITE_ROLE	Composite Role Created	INFO	SASE Orchestrator	When a composite role is created by an Enterprise, Partner, or Operator.	4.5
UPDATE_COMPOSITE_ROLE	Composite Role Updated	INFO	SASE Orchestrator	When a composite role is updated by an Enterprise, Partner, or Operator.	4.5
DELETE_COMPOSITE_ROLE	Composite Role Deleted	INFO	SASE Orchestrator	When a composite role is deleted by an Enterprise, Partner, or Operator.	4.5
ENQUEUE_CREATE_ ZSCALER_SUBLOCATION	Zscaler Sub Location creation enqueued	INFO	SASE Orchestrator	When sublocation configuration of Edge device settings are modified.	4.5
ENQUEUE_UPDATE_ ZSCALER_SUBLOCATION	Zscaler Sub Location update enqueued	INFO	SASE Orchestrator	When sublocation configuration of Edge device settings are modified.	4.5
ENQUEUE_DELETE_ ZSCALER_SUBLOCATION	Zscaler Sub Location deletion enqueued	INFO	SASE Orchestrator	When sublocation configuration of Edge device settings are modified.	4.5
CREATE_ZSCALER_SUBLOCATION	Zscaler Sub Location object created	INFO	SASE Orchestrator	When sublocation configuration of Edge device settings are modified.	4.5
UPDATE_ZSCALER_SUBLOCATION	Zscaler Sub Location object updated	INFO	SASE Orchestrator	When sublocation configuration of Edge device settings are modified.	4.5
DELETE_ZSCALER_SUBLOCATION	Zscaler Sub Location object deleted	INFO	SASE Orchestrator	When sublocation configuration of Edge device settings are modified.	4.5
ENQUEUE_UPDATE_ ZSCALER_LOCATION	Zscaler Location update enqueued	INFO	SASE Orchestrator	When location configuration of Edge device settings are modified.	4.5
CREATE_ZSCALER_LOCATION	Zscaler Location object created	INFO	SASE Orchestrator	When location configuration of Edge device settings are modified.	4.5
UPDATE_ZSCALER_LOCATION	Zscaler Location object updated	INFO	SASE Orchestrator	When location configuration of Edge device settings are modified.	4.5
DELETE_ZSCALER_LOCATION	Zscaler Location Object deleted	INFO	SASE Orchestrator	When location configuration of Edge device settings are modified.	4.5
GATEWAY_BGP_NEIGHBOR_UP	BGP session established to Gateway neighbor	INFO	SD-WAN Gateway	When a BGP peer establishes tunnel with a Gateway.
GATEWAY_BGP_NEIGHBOR_DOWN	Gateway BGP neighbor unavailable	INFO	SD-WAN Gateway	When a Gateway's BGP peer loses tunnel with a Gateway.
VRF_MAX_LIMIT_EXCEEDED	SD-WAN Partner Gateway: Maximum rules in a route map limit hit for enterprise <enterprise-name>	WARNING	SD-WAN Gateway	Maximum inbound route map config limit reached.
VRF_ROUTEMAP_RULES_ MAX_LIMIT_HIT	SD-WAN Partner Gateway: Maximum rules in a route map limit hit for enterprise <enterprise-name>	WARNING	SD-WAN Gateway	Maximum outbound route map config limit reached.
VRF_LIMIT_EXCEEDED	SD-WAN Gateway: Maximum VRF limit(1000) reached	ALERT	SD-WAN Gateway	Maximum VRF limit reached for Partner Gateway.
GATEWAY_STARTUP	SD-WAN Gateway service started	INFO	SD-WAN Gateway	Gateway daemon has started.
ZSCALER_MONITOR_DISABLED	Zscaler monitor disabled	CRITICAL	SD-WAN Edge/ SD-WAN Gateway (PROCMON)	Unable to launch L7 health check daemon for CSS tunnels on Edge/Gateway. Or disabled due to too many failures.	4.4
ZSCALER_MONITOR_FAILED	Zscaler monitor failed	ERROR	SD-WAN Edge/ SD-WAN Gateway (PROCMON)	When L7 health check daemon fails with a return code.	4.4
MGD_EMERG_REBOOT	Rebooting system to recover from stuck process(es): <process name>	CRITICAL	SD-WAN Edge/ SD-WAN Gateway (PROCMON)	Edge/Gateway is rebooted to recover from stuck processes by vc_procmon.	4.4
EDGE_SERVICES_STARTED/ GATEWAY_SERVICES_STARTED	Edge/Gateway Services Started	INFO	SD-WAN Edge/ SD-WAN Gateway (PROCMON)	Generated when procmon starts the services.	4.5
EDGE_SERVICES_STOPPED/ GATEWAY_SERVICES_STOPPED	Edge/Gateway Services Stopped	INFO	SD-WAN Edge/ SD-WAN Gateway (PROCMON)	Generated when procmon stops all the services.	4.5
EDGE_SERVICES_RESTARTED/ GATEWAY_SERVICES_RESTARTED	Edge/Gateway Services Restarted	INFO	SD-WAN Edge/ SD-WAN Gateway (PROCMON)	Generated when procmon restarts all the services.	4.5
EDGE_SERVICES_TERMINATED/ GATEWAY_SERVICES_TERMINATED	Edge/Gateway Services terminated	INFO	SD-WAN Edge/ SD-WAN Gateway (PROCMON)	Generated when procmon terminates all the services.	4.5
GATEWAY_SERVICE_DUMPED	Service gwd stopped for diagnostic memory dump	WARNING	SD-WAN Gateway (PROCMON)	Generated when gwd is stopped using SIGQUIT to generate core dump by user.	4.4
GATEWAY_MGD_SERVICE_FAILED	service mgd failed with error ....., restarting	ERROR	SD-WAN Gateway (PROCMON)	Generated by vc_procmon on Gateway when MGD gets stopped.	4.4
GATEWAY_NAT_SERVICE_FAILED	Service natd failed with error ...., restarting	ERROR	SD-WAN Gateway (PROCMON)	Generated by vc_procmon on Gateway when natd daemon gets stopped.	4.4
EDGE_DNSMASQ_FAILED	dnsmasq FAILED to start up	ERROR	SD-WAN Edge (PROCMON)	Generated when dnsmasq daemon failed to start up.	4.4
EDGE_SSH_LOGIN	sshd accepted connection	INFO	SD-WAN Edge (PROCMON)	Generated whenever ssh login is done for accessing the Edge.	4.4
EDGE_SERVICE_DUMPED	Service edged stopped for diagnostic memory dump	WARNING	SD-WAN Edge (PROCMON)	Generated when Edge is stopped using SIGQUIT to generate core dump by user.	4.4
EDGE_LED_SERVICE_DISABLED	Edge front-panel LED service disabled	WARNING, CRITICAL	SD-WAN Edge (PROCMON)	LED service deactivated.
EDGE_LED_SERVICE_FAILED	Edge front-panel LED service failed	ERROR	SD-WAN Edge (PROCMON)	LED service failed.
EDGE_MGD_SERVICE_DISABLED	Management service disabled	CRITICAL	SD-WAN Edge (PROCMON)	Management service is unable to activate for too many failures.
EDGE_MGD_SERVICE_FAILED	Management service failed	ERROR	SD-WAN Edge (PROCMON)	Management service failed.
EDGE_SERVICE_DISABLED	Edge data plane service disabled	WARNING/CRITICAL	SD-WAN Edge (PROCMON)	Edge Data plane service is deactivated.
EDGE_SERVICE_ENABLED	Edge data plane service enabled	WARNING	SD-WAN Edge (PROCMON)	Edge Data plane service is activated by user from local UI.
EDGE_SERVICE_FAILED	Edge data plane service failed	ERROR	SD-WAN Edge (PROCMON)	Edge Data plane service failed.
EDGE_VNFD_SERVICE_DISABLED		WARNING	SD-WAN Edge (PROCMON)	Edge VNFD service deactivated.
EDGE_VNFD_SERVICE_FAILED		ERROR	SD-WAN Edge (PROCMON)	Edge VNFD service failed.
EDGE_DOT1X_SERVICE_DISABLED	Edge 802.1x service disabled	WARNING, CRITICAL	SD-WAN Edge (PROCMON)	SD-WAN Edge 802.1x service is deactivated.
EDGE_DOT1X_SERVICE_FAILED	Edge 802.1x service failed	ERROR	SD-WAN Edge (PROCMON)	SD-WAN Edge 802.1x service failed.
EDGE_NYANSA_SYSLOG_ SERVICE_FAILED		ERROR	SD-WAN Edge (PROCMON)	Nyansa Syslog service failed.
EDGE_NYANSA_SYSLOG_ SERVICE_DISABLED		WARNING	SD-WAN Edge (PROCMON)	Nyansa Syslog service deactivated.
EDGE_NYANSA_AMOND_ SERVICE_FAILED		ERROR	SD-WAN Edge (PROCMON)	Nyansa Amond service failed.
EDGE_NYANSA_AMOND_ SERVICE_DISABLED		WARNING	SD-WAN Edge (PROCMON)	Nyansa Amond service deactivated
EDGE_NYANSA_SNMP_ TRAPD_SERVICE_FAILED		ERROR	SD-WAN Edge (PROCMON)	Nyansa SNMP Trapd service failed.
EDGE_NYANSA_SNMP_ TRAPD_SERVICE_DISABLED		WARNING	SD-WAN Edge (PROCMON)	Nyansa SNMP Trapd service deactivated.
EDGE_NYANSA_SNMP_ READER_SERVICE_FAILED		ERROR	SD-WAN Edge (PROCMON)	Nyansa SNMP Reader service failed.
EDGE_NYANSA_SNMP_ READER_SERVICE_DISABLED		WARNING	SD-WAN Edge (PROCMON)	Nyansa SNMP Reader service deactivated.
EDGE_USB_PORTS_ENABLED/ GATEWAY_USB_PORTS_ENABLED	Edge/Gateway USB ports Enabled	INFO	SD-WAN Edge/ SD-WAN Gateway (MGD)	Generated when USB ports is activated.	4.5
EDGE_USB_PORTS_DISABLED/ GATEWAY_USB_PORTS_DISABLED	Edge/Gateway USB ports Disabled	INFO	SD-WAN Edge/ SD-WAN Gateway (MGD)	Generated when USB ports is deactivated.	4.5
EDGE_USB_PORTS_ ENABLE_FAILURE/ GATEWAY_USB_PORTS_ ENABLE_FAILURE	Edge/Gateway USB ports Enable Failure	CRITICAL	SD-WAN Edge/ SD-WAN Gateway (MGD)	Generated when procmon activates USB ports failure.	4.5
EDGE_USB_PORTS_ DISABLE_FAILURE/ GATEWAY_USB_PORTS_ DISABLE_FAILURE	Edge/Gateway USB ports Disable Failure	CRITICAL	SD-WAN Edge/ SD-WAN Gateway (MGD)	Generated when procmon deactivates USB ports failure.	4.5
VNF_VM_EVENT	VNF VM Event	INFO	SD-WAN Edge (MGD)	Generated when VNF is powered on, powered off, deleted or deployed. Event detail will help distinguish the type.
VNF_INSERTION_EVENT	VNF insertion event	ALERT	SD-WAN Edge (MGD)	VNF insertion is activated or deactivated. Event detail will help distinguish the type.
VNF_IMAGE_DOWNLOAD_EVENT	VNF image download event	INFO	SD-WAN Edge (MGD)	VNF download is in progress, completed, or failed. Event detail will help distinguish the type.
MGD_START	Online	INFO	SD-WAN Edge (MGD)	Management daemon on Edge has started.
MGD_EXITING	Shutting Down	INFO	SD-WAN Edge (MGD)	Management service on a SD-WAN Edge is shutting down for a restart.
MGD_SET_CERT_SUCCESS	Set Certificate Successful	INFO	SD-WAN Edge (MGD)	New PKI certificate for Orchestrator communication is installed successfully on a SD-WAN Edge.
MGD_SET_CERT_FAIL	Set Certificate Failed	ERROR	SD-WAN Edge (MGD)	Installation of a new PKI certificate for Orchestrator communication on a SD-WAN Edge has failed.
MGD_CONF_APPLIED	Configuration Applied	INFO	SD-WAN Edge (MGD)	Configuration change made on the Orchestrator has been pushed to SD-WAN Edge and is successfully applied.
MGD_CONF_PENDING	New configuration pending	INFO	SD-WAN Edge (MGD)	New configuration is pending application (This event is currently NOT generated anywhere)
MGD_CONF_ROLLBACK	Bad configuration rolled back	CRITICAL	SD-WAN Edge (MGD)	Configuration policy sent from the Orchestrator had to be rolled back because it destabilized the SD-WAN Edge.
MGD_CONF_FAILED	Failed to apply configuration	ERROR	SD-WAN Edge (MGD)	Edge failed to apply a configuration change made on the Orchestrator.
MGD_CONF_UPDATE_INVALID	Invalid software update configuration	WARNING	SD-WAN Edge (MGD)	Edge has been assigned an Operator Profile with an invalid software image that the Edge cannot use.
MGD_DEVICE_CONFIG_WARNING		WARNING	SD-WAN Edge (MGD)	Inconsistent device settings are detected. MGD continues with warnings.
MGD_DEVICE_CONFIG_ERROR		ERROR	SD-WAN Edge (MGD)	Invalid device settings are detected by MGD.
MGD_SWUP_IGNORED_UPDATE	Software update ignored	INFO	SD-WAN Edge (MGD)	Software update is ignored at the activation time, because SD-WAN Edge is already running that version.
MGD_SWUP_INVALID_SWUPDATE	Invalid software update	WARNING	SD-WAN Edge (MGD)	Software update package received from the Orchestrator is invalid.
MGD_SWUP_DOWNLOAD_FAILED	Software download failed	ERROR	SD-WAN Edge (MGD)	Download of an Edge software update image has failed.
MGD_SWUP_UNPACK_FAILED	Software update unpack failed	ERROR	SD-WAN Edge (MGD)	Edge has failed to unpack the downloaded software update package.
MGD_SWUP_INSTALL_FAILED	Software update install failed	ERROR	SD-WAN Edge (MGD)	Edge software update installation failed.
MGD_SWUP_INSTALLED	Software update	INFO	SD-WAN Edge (MGD)	Software update was successfully downloaded and installed.
MGD_SWUP_REBOOT	Restart after software update	INFO	SD-WAN Edge (MGD)	Edge is being rebooted after a software update.
MGD_SWUP_STANDBY_ UPDATE_START	Standby device software update started	INFO	SD-WAN Edge (MGD)	Edge send upgrade message to standby when it detect peer software version is not same with Active Edge or Active Edge received upgrade command from the Orchestrator.
MGD_SWUP_STANDBY_ UPDATE_FAILED	Standby device software update failed	ERROR	SD-WAN Edge (MGD)	Active Edge report standby upgrade failed if it fail to send upgrade command to peer or standby fail to upgrade for more than 5 minutes
MGD_SWUP_STANDBY_UPDATED	Standby device software update completed	INFO	SD-WAN Edge (MGD)	When Active Edge detects standby comes up with expected image version
MGD_VCO_ADDR_RESOLV_FAILED	Cannot resolve Orchestrator address	WARNING	SD-WAN Edge (MGD)	DNS resolution of the Orchestrator address failed.
MGD_DIAG_REBOOT	User-initiated restart	INFO	SD-WAN Edge (MGD)	Edge is rebooted by a Remote Action from the Orchestrator.
MGD_DIAG_RESTART	Services restarted	INFO	SD-WAN Edge (MGD)	Data plane service on the S SD-WAN Edge is restarted by a Remote Action from the Orchestrator.
MGD_SHUTDOWN	Powered off	INFO	SD-WAN Edge (MGD)	Edge diagnostic shutdown based on user request.
MGD_HARD_RESET	Reset to factory defaults	INFO	SD-WAN Edge (MGD)	Edge is restored to its factory-default software and configuration.
MGD_DEACTIVATED	Deactivated	INFO	SD-WAN Edge (MGD)	Edge is deactivated based on user request by mgd.
MGD_NETWORK_ SETTINGS_UPDATED	Network settings updated	INFO	SD-WAN Edge (MGD)	Network settings are applied to a SD-WAN Edge.
MGD_NETWORK_MGMT_ IF_BROKEN	Management Network incorrectly set up	ALERT	SD-WAN Edge (MGD)	Management network is set up incorrectly.
MGD_NETWORK_MGMT_ IF_FIXED	Network was restarted twice to fix Management Network inconsistency	WARNING	SD-WAN Edge (MGD)	Network is restarted twice to fix the Management Network inconsistency.
MGD_INVALID_VCO_ADDRESS	Unable to heartbeat to new VCO %(newprimary)s, keep talking to old VCO %(oldprimary)s	WARNING	SD-WAN Edge (MGD)	Invalid address for Orchestrator was sent in a management plane policy update and was ignored.
MGD_ACTIVATION_PARTIAL	Activation incomplete	INFO	SD-WAN Edge (MGD)	Edge is activated partially, but a software update failed.
MGD_REBOOT_DIAG_BUNDLE	Generating diagnostic bundle before reboot	INFO	SD-WAN Edge (MGD)	When the diagnostic bundle is generated before reboot.	5.0
MGD_ACTIVATION_SUCCESS	Activated	INFO	SD-WAN Edge (MGD)	Edge has been activated successfully.
MGD_ACTIVATION_ERROR	Activation failed	ERROR	SD-WAN Edge (MGD)	Edge activation failed. Either the activation link was not correct, or the configuration was not successfully downloaded to the Edge.
MGD_HA_TERMINATED	HA disabled on Edge	INFO	SD-WAN Edge (MGD)	Standby Edge send this event when HA is deactivated.
EDGE_INTERFACE_DOWN	Edge Interface Down	INFO	SD-WAN Edge (MGD)	Generated by hotplug scripts when the interface is down.
EDGE_INTERFACE_UP	Edge Interface Up	INFO	SD-WAN Edge (MGD)	Generated by hotplug scripts when the interface is up.
EDGE_KERNEL_PANIC		ALERT	SD-WAN Edge (MGD)	Edge operating system has encountered a critical exception and must reboot the Edge to recover. An Edge reboot is disruptive to customer traffic for 2-3 minutes while the Edge completes the reboot.
MGD_MFRMUP_IGNORED_UPDATE	Modem Firmware update ignored: <error message>	ALERT	SD-WAN Edge (MGD)	Generated when modem firmware update is ignored.	5.0
MGD_MFRMUP_ INVALID_MFRMUPDATE	Invalid Modem Firmware update applied: <error message>	INFO	SD-WAN Edge (MGD)	Generated when invalid modem firmware update is applied.	5.0
MGD_MFRMUP_ INCOMPATIBLE_UPDATE	In compatible Device or Factory Image: <error message>	WARNING	SD-WAN Edge (MGD)	Generated when the device is incompatible for modem firmware update.	5.0
MGD_MFRMUP_DOWNLOAD_FAILED	Error downloading MFW ver <version> <build>	WARNING	SD-WAN Edge (MGD)	Generated when error occurs downloading the modem firmware update version.	5.0
MGD_MFRMUP_UNPACK_FAILED	Error unpacking MFW ver <version> bu <build>	ERROR	SD-WAN Edge (MGD)	Generated when the modem firmware update unpacking failed.	5.0
MGD_MFRMUP_INSTALL_FAILED	Error installing MFW ver <version> bu <build>	ERROR	SD-WAN Edge (MGD)	Generated when the modem firmware update installation failed.	5.0
MGD_MFRMUP_INSTALLED	Installed downloaded MFW ver <version> bu <build>	ERROR	SD-WAN Edge (MGD)	Generated when the modem firmware update version is installed.	5.0
MGD_MFRMUP_ UPGRADE_PROGRESS	MFW update in progress ver <version> bu <build>	INFO	SD-WAN Edge (MGD)	Generated when the modem firmware upgrade is in progress.	5.0
MGD_MFRMUP_REBOOT	Edge is restarting into new MFW version <version> build <build>	INFO	SD-WAN Edge (MGD)	Generated when the Edge restarts with new modem firmware update version.	5.0
MGD_MFRMUP_STANDBY_ UPDATE_START	Begin HA Standby update with new MFW	INFO	SD-WAN Edge (MGD)	Generated when the HA Standby update with new modem firmware version started.	5.0
MGD_MFRMUP_STANDBY_ UPDATE_FAILED	Failed HA Standby update with new MFW	ERROR	SD-WAN Edge (MGD)	Generated when the HA Standby update with new modem firmware version failed.	5.0
MGD_MFRMUP_STANDBY_ UPDATED	Succeeded HA Standby update with new MFW	INFO	SD-WAN Edge (MGD)	Generated when the HA Standby update with new modem firmware version succeeded.	5.0
EDGE_OSPF_NSM	Edge OSPF NSM Event	INFO	SD-WAN Edge (EDGED)	Edge send this event when OSPF neighbor state changes.
IP_SLA_PROBE	IP SLA Probe	INFO	SD-WAN Edge (EDGED)	Edge generates when IPSLA state changes.
IP_SLA_RESPONDER	IP SLA Responder	ALERT, INFO	SD-WAN Edge (EDGED)	When IPSLA responder state changes from up to down and vice versa.
ALL_CSS_DOWN	ALL_CSS_DOWN	ALERT	SD-WAN Edge (EDGED)	When all CSS paths go down.
CSS_UP	CSS_UP	ALERT	SD-WAN Edge (EDGED)	When at least one CSS path is up.
LINK_MTU	Link MTU detected	INFO	SD-WAN Edge (EDGED)	Link MTU detected. The Gateway has detected the MTU for this WAN link and all traffic sent on this link will account for that MTU reading. For Release 3.2.x and earlier, VeloCloud software uses RFC 1191 Path MTU Discovery, which relies on receiving an ICMP error (fragmentation needed) from an upstream device in order to discover the MTU. On Release 3.3.x and later, the Path MTU Discovery has been enhanced to use packet layer Path MTU Discovery (RFC 4821).
PORT_SCAN_DETECTED	Port scan detected	INFO	SD-WAN Edge (EDGED)	If Stateful firewall detects host scanning then this event would be logged along with the IP address and port number.
PEER_UNUSABLE	Peer unusable	ALERT	SD-WAN Edge (EDGED)	Peer is unusable.		Deprecated
PEER_USABLE	Peer usable	INFO	SD-WAN Edge (EDGED)	Peer is usable.		Deprecated
BW_UNMEASURABLE	Error measuring bandwidth	ALERT	SD-WAN Edge (EDGED)	Bandwidth measurement failed to the Primary Gateway. Reattempt at measurement in 30minutes. Reasons include a link suffering some quality issue like excessive loss or latency. This message should only be seen on Edge's using Release 3.1.x or lower as this was removed beginning with Edge Release 3.2.0.
SLOW_START_CAP_MET	Bandwidth measured exceeds the slow start cap. Moving to burst mode.	NOTICE	SD-WAN Edge (EDGED)	Bandwidth measurement Slow-start limit of 175 Mbps exceeded. Link will be remeasured in Burst mode to ensure the correct measurement of a 175+ Mbps WAN link.
EDGE_BFD_CONFIG		INFO	SD-WAN Edge (EDGED)	BFD configured with incorrect local address.
FLOOD_ATTACK_DETECTED		INFO	SD-WAN Edge (EDGED)	Generated when a malicious host floods the SD-WAN Edge with new connections.
LINK_ALIVE	Link alive	INFO	SD-WAN Edge (EDGED)	When link state (link_fsm) becomes alive.
LINK_DEAD	Link dead	ALERT	SD-WAN Edge (EDGED)	When link state (link_fsm) becomes dead.
LINK_USABLE	Link usable	INFO	SD-WAN Edge (EDGED)	When link state (link_fsm) becomes usable.
LINK_UNUSABLE	Link unusable	ALERT	SD-WAN Edge (EDGED)	When link state (link_fsm) becomes unusable.
VPN_DATACENTER_STATUS	VPN Tunnel state change	INFO, ERROR	SD-WAN Edge (EDGED)	VPN Tunnel state change.
INTERFACE_CONFIG_ERROR	Interface config error	ALERT	SD-WAN Edge (EDGED)
HA_STANDBY_ACTIVATED	HA Standby Activated	INFO	SD-WAN Edge (EDGED)	When active Edge detects standby peer send this event to SASE Orchestrator to activate standby Edge.
HA_INTF_STATE_CHANGED	HA Interface State Changed	ALERT	SD-WAN Edge (EDGED)	HA interface went down/up.
HA_GOING_ACTIVE	High Availability Going Active	INFO	SD-WAN Edge (EDGED)	Standby Edge transition to Active Edge after detecting no heartbeat for more than 700ms.
HA_FAILED	High Availability Peer State Unknown	INFO	SD-WAN Edge (EDGED)	Active Edge detects no heartbeat or activity from standby Edge for more than 700 milliseconds.
HA_READY	High Availability Ready	INFO	SD-WAN Edge (EDGED)	Active Edge detects activated standby peer.
VCO_IDENTIFIED_HA_FAILOVER	Edge HA Failover Identified	ALERT	SASE Orchestrator	Orchestrator has detected that a High Availability failover has occurred on the Edge.	5.2
VCO_IDENTIFIED_HA_FAILURE	Edge HA Failure Identified	ALERT	SASE Orchestrator	Orchestrator has detected that the Standby Edge has gone down.	5.2
HA_UPDATE_FAILOVER_TIME	Updating HA Failover time from ####ms to ####ms	INFO	SASE Orchestrator	User changed the failover time for when an HA Edge will failover due to a lack of heartbeat response. This time is measured in milliseconds (ms).	5.2
HA_RESET_FAILOVER_TIME	Failover time reset from ####ms to ####ms.	INFO	SD-WAN Edge (EDGED)	When an HA Edge's system has been stable for 60 seconds, the process reduces the failover time by 50%.	5.2
HA_WAN_LINK_ACTIVE	<Edge-Name> <Active Serial Number> configured with <Standard, Enhanced, or Mixed-Mode> HA, with WAN <Link ID> is <Down or Up>	ALERT	SD-WAN Edge (EDGED)	For all HA topologies (Standard, Enhanced, and Mixed-Mode) when the WAN interface goes Up or Down on the Active Edge.	5.2
HA_WAN_LINK_STANDBY	<Edge-Name> <Standby Serial Number> configured with <Standard, Enhanced, or Mixed-Mode> HA, with WAN <Link ID> is <Down or Up>	ALERT	SD-WAN Edge (EDGED)	For all HA topologies (Standard, Enhanced, and Mixed-Mode) when the WAN interface goes Up or Down on the Standby Edge.	5.2
HA_LAN_LINK_ACTIVE	<Edge-Name> <Active Serial Number> configured with <Standard, Enhanced, or Mixed-Mode> HA, with WAN <Link ID> is <Down or Up>	ALERT	SD-WAN Edge (EDGED)	For all HA topologies (Standard, Enhanced, and Mixed) when the LAN interface goes Up or Down on the Active Edge.	5.2
HA_LAN_LINK_STANDBY	<Edge-Name> <Standby Serial Number> configured with <Standard, Enhanced, or Mixed-Mode> HA, with LAN <Link ID> is <Down or Up>	ALERT	SD-WAN Edge (EDGED)	For all HA topologies (Standard, Enhanced, and Mixed) when the LAN interface goes Up or Down on the Standby Edge.	5.2
HA_SPLIT_BRAIN_DETECTED	HA split-brain detected, peer will restart	ALERT	SASE Orchestrator	The Orchestrator has detected that both HA Edges are in an Active state. This is known as an Active-Active or Split Brain state. If other methods of preventing a Split-Brain state are not successful, the Orchestrator resolves this by triggering a restart of the Standby Edge (listed here as "peer") that is erroneously functioning as Active.	5.2
HA_SPLITBRAIN_RESOLVED	HA split-brain resolved, peer will move to standby state	NOTICE	SASE Orchestrator	The Standby Edge (listed here as "peer") in an Active state has completed its restart and is demoted back to its correct Standby state. As a result, the Active-Active or Split Brain state is resolved.	5.2
FW_UPGRADE_PENDING - CPLD	CPLD Firmware being updated during software upgrade - edge may be offline for 3 - 5 minutes.	INFO	SASE Orchestrator	A firmware upgrade action has been initiated and sent by the Orchestrator to the Edge.	5.2
FW_UPGRADE_SUCCESS	Note - that an edge physical reboot was required due to the edge not responding once the PENDING message was received.	INFO	SD-WAN Edge(EDGED)	The Edge firmware upgrade was successful and required Edge reboots to complete.	5.2
MGD_UNREACHABLE	Management Proxy unreachable	EMERGENCY	SD-WAN Edge (EDGED)	Data plane process could not communicate to the management plane proxy.
VRRP_INTO_MASTER_STATE	VRRP HA updated to Primary state	INFO	SD-WAN Edge (EDGED)	VRRP get into Primary state
VRRP_OUT_OF_MASTER_STATE	VRRP HA updated out of Primary state	INFO	SD-WAN Edge (EDGED)	VRRP get out of Primary state.
VRRP_FAIL_INFO	VRRP failed	INFO	SD-WAN Edge (EDGED)	VRRP failed.
EDGE_HEALTH_ALERT	Edge Health Alert	EMERGENCY	SD-WAN Edge (EDGED)	Data plane is unable to allocate necessary resources for packet processing.
EDGE_STARTUP	Edge service startup	INFO	SD-WAN Edge (EDGED)	Edge is running in mgmt-only mode.
EDGE_DHCP_BAD_OPTION	Invalid DHCP Option	WARNING	SD-WAN Edge (EDGED)	SD-WAN Edge is configured with an invalid DHCP option.
EDGE_NEW_USER	New client user seen	INFO	SD-WAN Edge (EDGED)	New or updated client user detected on a given MAC address.
EDGE_NEW_DEVICE	New client device seen	INFO	SD-WAN Edge (EDGED)	A new device is detected during DHCP.
INVALID_JSON		CRITICAL	SD-WAN Edge (EDGED)	The Edged received invalid json data from the mgd.
QOS_OVERRIDE	QoS override	INFO	SD-WAN Edge (EDGED)	Remote diagnostics is performed to flip cloud traffic to be routed according to business policy OR sent to the Gateway OR or bypass the Gateway.
EDGE_L2_LOOP_DETECTED	Edge L2 loop detected	ERROR	SD-WAN Edge (EDGED)	Edge L2 loop is detected.
EDGE_TUNNEL_CAP_WARNING	Edge Tunnel CAP warning	WARNING	SD-WAN Edge (EDGED)	Edge has reached its maximum tunnel capacity.
Interface LoS	LoS no longer seen on interface <iface-name>/ LoS detected on interface <iface-name>	ALERT	SD-WAN Edge (EDGED)	Loss of Signal state changed on the interface in HA setup.	4.4
EDGE_LOCALUI_LOGIN	Edge Local UI Login	INFO	SD-WAN Edge	LOCAL UI login is successful for a user.
EDGE_MEMORY_USAGE_ERROR	Memory Usage Critical	ERROR	SD-WAN Edge	Resource Monitor process detects Edge memory utilization has exceeded defined thresholds and reaches 70% threshold. The Resource Monitor waits for 90 seconds to allow the Edged process to recover from a possible temporary spike in memory usage. If memory usage persists at a 70% or higher level for more than 90 seconds, the Edge will generate this error message and send this event to the Orchestrator.
EDGE_MEMORY_USAGE_WARNING	Memory Usage Warning	WARNING	SD-WAN Edge	Resource Monitor process detects Edge memory utilization is 50% or more of the available memory. This event will be sent to the Orchestrator every 60 minutes until the memory usage drops under the 50% threshold.
EDGE_RESTARTING	User-initiated Edge service restart	WARNING	SD-WAN Edge	User initiates an Edge service restart.
EDGE_REBOOTING	User-initiated Edge reboot	WARNING	SD-WAN Edge	User initiates an Edge reboot.
EDGE_HARD_RESET	User-initiated Edge hard reset	WARNING	SD-WAN Edge	Edge hard reset
EDGE_DEACTIVATED	Edge deactivated	WARNING	SD-WAN Edge	SD-WAN Edge has all its configuration cleared and is not associated with a customer site. The software build remains unchanged.
EDGE_CONSOLE_LOGIN	Edge console login	INFO	SD-WAN Edge	SD-WAN Edge login via console port.
EDGE_COMMAND	Edge Command	INFO	SD-WAN Edge	Generated by a SD-WAN Edge during remote diagnostics when executing Edge commands.
EDGE_BIOS_UPDATED	Edge BIOS updated	INFO	SD-WAN Edge	Generated by 12-upgrade-bios.sh script when SD-WAN Edge BIOS is successfully updated.
EDGE_BIOS_UPDATE_FAILED	Edge BIOS update failed	ERROR	SD-WAN Edge	Generated by 12-upgrade-bios.sh script when SD-WAN Edge BIOS update failed.
IPV6_ADDR_DELETED	Deleted IPv6 address <v6addr> on interface/sub-interface <iface/subiface name>	INFO	SD-WAN Edge/ SD-WAN Gateway	When IPv6 interface is deleted on interface or sub-interface.	4.4
IPV6_NEW_ADDR_ADDED	Added new IPv6 address <v6-addr> on interface <ifacename>	INFO	SD-WAN Edge	When IPv6 address is added on interface.	4.4
IPV6_ADDR_DEPRECATED	Deprecated IPv6 address <v6-addr> on interface <iface-name>	INFO	SD-WAN Edge	When IPv6 address gets deprecated on an interface.	4.4
IPV6_ADDR_PREFERRED	Preferred IPv6 address <v6-addr> on interface <iface-name>	INFO	SD-WAN Edge	When IPv6 address moves from Deprecated state to Preferred state.	4.4
NDP_MAC_ADDR_CHANGE	Neighbor MAC address change detected in interface <iface-name>	INFO	SD-WAN Edge	When IPv6 neighbor MAC address change is detected.	4.4
EDGE_INTF_CONFIG	DAD Failed for IPv6 Address <v6-addr> in interface <iface-name>	INFO	SD-WAN Edge	When IPv6 NDP DAD is failed.	4.4
EDGE_SHUTTING_DOWN	Edge is shutting down - must be restarted by power-cycling	WARNING	SD-WAN Edge (LUA Backend)	When Edge is shutting down.	4.4
BIOS_PHY_RESET_CMOS_SET	BIOS - Phy reset CMOS bit is set/ BIOS - Phy reset CMOS bit cannot be set	WARNING	SD-WAN Edge	When CMOS (BIOS) is reset to its factory default settings.	4.4
FW_UPGRADE_PENDING	CPLD Firmware being updated during software upgrade - edge may go offline for 3-5 minutes	WARNING	SD-WAN Edge	When CPLD Firmware is being updated during software upgrade.	4.4
EVDSL_IFACE_UP_EVENT	Contains json string with evdslModem name, status, serial number	INFO	SD-WAN Edge	Generated when EVDSL interface moves to Up state.	4.5
EVDSL_IFACE_DOWN_EVENT	contains json string with evdslModem name, status, serial number	INFO	SD-WAN Edge	Generated when EVDSL interface moves to Down state.	4.5
NAT_PORT_ASSIGN_FAIL	NAT Ports exhausted from <src_ip> to <dst_ip>:<dport>	WARNING	SD-WAN Edge/ SD-WAN Gateway	Generated when NAT port allocation range is exhausted.	4.5
IPV6_MAX_DAD_FAILED	IPv6 < link local / RA > stable secret address generation failed on interface <iface name> after multiple DAD failures	ALERT	SD-WAN Edge	Generated when we fail to generate stateless IPv6 address after multiple DAD failures.	4.5
IPV6_ADDR_GEN_FAILED	IPv6 <link local / RA> stable secret address generation failed on interface <iface name> after generating multiple invalid addresses	ALERT	SD-WAN Edge	Generated when IPv6 stable secret address generation failed on interface after generating multiple invalid addresses.	4.5
INVALID_STATIC_ROUTE	Rejected invalid routes <route-prefix>/0 flag <route flags in hex>	ALERT	SD-WAN Edge	Generated for invalid static route.	4.5
INVALID_OSPF_ROUTE	Rejected invalid routes <route-prefix>/0 flag <route flags in hex>	ALERT	SD-WAN Edge	Generated for invalid OSPF routes.	4.5
INVALID_BGP_ROUTE	Rejected invalid routes <route-prefix>/0 flag <route flags in hex>	ALERT	SD-WAN Edge	Generated for invalid BGP routes.	4.5
INVALID_REMOTE_OSPF_ROUTE	Rejected invalid routes <route-prefix>/0 flag <route flags in hex>	ALERT	SD-WAN Edge	Generated for invalid remote OSPF route.	4.5
INVALID_REMOTE_BGP_ROUTE	Rejected invalid routes <route-prefix>/0 flag <route flags in hex>	ALERT	SD-WAN Edge	Generated for invalid remote BGP route.	4.5
INVALID_OVERLAY_ROUTE	Rejected invalid routes <route-prefix>/0 flag <route flags in hex>	ALERT	SD-WAN Edge	Generated for invalid Overlay route.	4.5
INVALID_ROUTE	Rejected invalid routes <route-prefix>/0 flag <route flags in hex>	ALERT	SD-WAN Edge	Generated for invalid routes.	4.5
EDGE_BFDv6_CONFIG	Incorrect local address <IP address>. IP Address not present	INFO	SD-WAN Edge	Generated when invalid IPv6 BFD configuration is received.	4.5
EDGE_USB_DEVICE_INSERTED	Edge USB device inserted	ALERT	SD-WAN Edge	Generated when USB device is inserted.	4.5
EDGE_USB_DEVICE_REMOVED	Edge USB device removed	ALERT	SD-WAN Edge	Generated when USB device is removed.	4.5
WIFI_CARD_DEAD	Wificard <device name> at <port> is no longer usable , reboot required to recover	EMERGENCY	SD-WAN Edge	Generated when Wi-Fi card at a port is no longer usable.	4.5
DNS_CACHE_LIMIT_REACHED	DNS Cache Max Limit (<cache limit of the edge>) Reached	ALERT	SD-WAN Edge	Generated when DNS cache limit is reached on the Edge.	4.5.1, 5.0
PEER_MISMATCH	PEER_MISMATCH	ALERT	SD-WAN Edge (EDGED)	When there is a peer name mismatch between MP_INIT_REQ and MP_INIT_ACK during Edge and Gateway tunnel creation.	5.1
EDGE_CONGESTED	Congestion alert due to either a high number of packet drops/scheduler drops	WARNING	SD-WAN Edge (EDGED)	The number of packet drops (xxxx) is above the congestion threshold (1000) or "The number of scheduler drops (xxxx) is above the congestion threshold (1000)" Generated if there are either: Continuous packet drops above a threshold of 1000 for more than 30 seconds due to over capacity. Continuous packet drops above a threshold of 1000 for more than 30 seconds at the schedulers.	5.1
EDGE_STABLE	Congestion due to a high number of packet drops/scheduler drops subsided	NOTICE	SD-WAN Edge (EDGED)	"The number of packet drops (xxx) is within the acceptable threshold (1000)" or "The number of scheduler drops (xxx) is within the acceptable threshold (1000)" Follow up to the EDGE_CONGESTED event, indicating that the triggering criteria has subsided and the Edge is operating within acceptable parameters.	5.1
MGD_ATPUP_INVALID_ IDPS_SIGNATURE	MGD_ATPUP_INVALID_ IDPS_SIGNATURE	ERROR	SD-WAN Edge (MGD)	Generated when there is an invalid suricata package.	5.2
MGD_ATPUP_DOWNLOAD_ IDPS_SIGNATURE_FAILED	MGD_ATPUP_DOWNLOAD_ IDPS_SIGNATURE_FAILED	ERROR	SD-WAN Edge (MGD)	Generated when downloading of suricata package fails.	5.2
MGD_ATPUP_DECRYPT_IDPS_ SIGNATURE_FAILED	MGD_ATPUP_DECRYPT_ IDPS_SIGNATURE_FAILED	ERROR	SD-WAN Edge (MGD)	Generated when unpacking of suricata package fails.	5.2
MGD_ATPUP_APPLY_IDPS_ SIGNATURE_FAILED	MGD_ATPUP_APPLY_IDPS_ SIGNATURE_FAILED	ERROR	SD-WAN Edge (MGD)	Generated due to error in applying Suricata files.	5.2
MGD_ATPUP_APPLY_IDPS_ SIGNATURE_SUCCEEDED	MGD_ATPUP_APPLY_IDPS_ SIGNATURE_SUCCEEDED	INFO	SD-WAN Edge (MGD)	Generated when suricata files are successfully applied.	5.2
MGD_ATPUP_STANDBY_ UPDATE_START	MGD_ATPUP_STANDBY_ UPDATE_START	INFO	SD-WAN Edge (MGD)	Generated when HA Standby update with new EFS IDPS Signature version is started.	5.2
MGD_ATPUP_STANDBY_ UPDATE_FAILED	MGD_ATPUP_STANDBY_ UPDATE_FAILED	ERROR	SD-WAN Edge (MGD)	Generated when HA Standby update with new EFS IDP Signature version fails.	5.2
MGD_ATPUP_STANDBY_ UPDATED	MGD_ATPUP_STANDBY_ UPDATED	INFO	SD-WAN Edge (MGD)	Generated when HA Standby update with new EFS IDPS Signature version is successfully applied.	5.2
HA_SET_PEER_KEYS_ SUCCESSFUL	HA_SET_PEER_KEYS_ SUCCESSFUL	NOTICE	SD-WAN Edge (MGD)	Generated by an Edge deployed in a cluster which confirms that it has successfully saved the HA Peer keys for that cluster.	5.4

Supported SD-WAN Edge Events for Syslogs

The following table describes all the possible SD-WAN Edge events that could be exported to syslog collectors.

Table 3. Supported SD-WAN Edge Events for Syslogs
Events	Severity	Description
BW_UNMEASURABLE	ALERT	Generated by a SD-WAN Edge when the path bandwidth is unmeasurable.
EDGE_BIOS_UPDATE_FAILED	ERROR	Generated by 12-upgrade-bios.sh script when SD-WAN Edge BIOS is updated.
EDGE_BIOS_UPDATED	INFO	Generated by 12-upgrade-bios.sh script when SD-WAN Edge BIOS update failed.
EDGE_CONSOLE_LOGIN	INFO	Generated by a SD-WAN Edge during login via console port.
EDGE_DEACTIVATED	WARNING	Generated when a SD-WAN Edge has all its configuration cleared and is not associated with a customer site. The software build remains unchanged.
EDGE_DHCP_BAD_OPTION	WARNING	Generated when the SD-WAN Edge is configured with an invalid DHCP option.
EDGE_DISK_IO_ERROR	WARNING	Generated by a SD-WAN Edge when the Disk IO error has occurred during upgrade/downgrade.
EDGE_DISK_READONLY	CRITICAL	Generated by a SD-WAN Edge when a Disk turns to read-only mode.
EDGE_DNSMASQ_FAILED	ERROR	Generated when Dnsmasq service failed.
EDGE_DOT1X_SERVICE_DISABLED	WARNING, CRITICAL	Generated by vc_procmon when the SD-WAN Edge 802.1x service is deactivated.
EDGE_DOT1X_SERVICE_FAILED	ERROR	Generated by vc_procmon when the SD-WAN Edge 802.1x service failed.
EDGE_HARD_RESET	WARNING	Generated when user has initiated SD-WAN Edge hard reset.
EDGE_HEALTH_ALERT	EMERGENCY	Generated by the SD-WAN Edge when the data plane is unable to allocate necessary resources for packet processing.
EDGE_INTERFACE_DOWN	INFO	Generated by hotplug scripts when the interface is down.
EDGE_INTERFACE_UP	INFO	Generated by hotplug scripts when the interface is up.
EDGE_KERNEL_PANIC	ALERT	Generated by a SD-WAN Edge when the Edge operating system has encountered a critical exception and must reboot the Edge to recover. An Edge reboot is disruptive to customer traffic for 2-3 minutes while the Edge completes the reboot.
EDGE_L2_LOOP_DETECTED	ERROR	Generated when SD-WAN EdgeL2 loop is detected.
EDGE_LED_SERVICE_DISABLED	WARNING, CRITICAL	Generated by vc_procmon when the SD-WAN Edge LED service is deactivated.
EDGE_LED_SERVICE_FAILED	ERROR	Generated by vc_procmon when the SD-WAN Edge LED service failed.
EDGE_LOCALUI_LOGIN	INFO	Generated when LOCAL UI login is successful for a user.
EDGE_MEMORY_USAGE_ERROR	ERROR	Generated by a SD-WAN Edge when the Resource Monitor process detects Edge memory utilization has exceeded defined thresholds and reaches 70% threshold. The Resource Monitor waits for 90 seconds to allow the edged process to recover from a possible temporary spike in memory usage. If memory usage persists at a 70% or higher level for more than 90 seconds, the Edge will generate this error message and send this event to the Orchestrator.
EDGE_MEMORY_USAGE_WARNING	WARNING	Generated by a SD-WAN Edge when the Resource Monitor process detects Edge memory utilization is 50% or more of the available memory. This event will be sent to the Orchestrator every 60 minutes until the memory usage drops under the 50% threshold.
EDGE_MGD_SERVICE_DISABLED	CRITICAL, WARNING	Generated by vc_procmon when mgd is unable to start or deactivated for too many failures.
EDGE_MGD_SERVICE_FAILED	ERROR	Generated by vc_procmon when the mgd service failed.
EDGE_NEW_DEVICE	INFO	Generated when a new DHCP client is identified by processing the DHCP request.
EDGE_NEW_USER	INFO	Generated when a new client user is added.
EDGE_OSPF_NSM	INFO	Generated by the SD-WAN Edge when the OSPF Neighbor state Machine (NSM) state occurred.
EDGE_REBOOTING	WARNING	Generated when a user has initiated SD-WAN Edge reboot.
EDGE_RESTARTING	WARNING	Generated when a user has initiated SD-WAN Edge service restart.
EDGE_SERVICE_DISABLED	WARNING	Generated when the SD-WAN Edge data plane service is deactivated.
EDGE_SERVICE_ENABLED	WARNING	Generated when the SD-WAN Edge data plane service is enabled.
EDGE_SERVICE_FAILED	ERROR	Generated when the SD-WAN Edge data plane service failed.
EDGE_SHUTTING_DOWN	WARNING	Generated when a SD-WAN Edge is shutting down.
EDGE_STARTUP	INFO	Generated when a SD-WAN Edge is running in mgmt-only mode.
EDGE_SSH_LOGI	INFO	Generated by a SD-WAN Edge during login via SSH protocol.
EDGE_TUNNEL_CAP_WARNING	WARNING	Generated when a SD-WAN Edge has reached its maximum tunnel capacity.
EDGE_USB_PORTS_ENABLED	INFO	Generated when USB ports are enabled on a SD-WAN Edge.
EDGE_USB_PORTS_DISABLED	INFO	Generated when USB ports are deactivated on a SD-WAN Edge.
EDGE_USB_PORTS_ENABLE_FAILURE	CRITICAL	Generated by a SD-WAN Edge when the enable operation for its USB ports fails.
EDGE_USB_PORTS_DISABLE_FAILURE	CRITICAL	Generated by a SD-WAN Edge when the deactivate operation for its USB ports fails.
EDGE_USB_DEVICE_REMOVED	ALERT	Generated by a SD-WAN Edge when a device is removed from its USB port.
EDGE_USB_DEVICE_INSERTED	ALERT	Generated by a SD-WAN Edge when a device is inserted into its USB port.
EDGE_VNFD_SERVICE_DISABLED	WARNING, CRITICAL	Generated by vc_procmon when the Edge VNFD service is deactivated.
EDGE_VNFD_SERVICE_FAILED	ERROR	Generated by vc_procmon when the Edge VNFD service failed.
FLOOD_ATTACK_DETECTED	INFO	Generated when a malicious host floods the SD-WAN Edge with new connections.
GATEWAY_SERVICE_STATE_UPDATED		Generated when the Operator changes the Service State of a Gateway.
HA_FAILED	INFO	HA Peer State Unknown -Generated when the Standby Edge has not sent a heartbeat response and only one of the two HA Edges is communicating with the Orchestrator and Gateways.
HA_GOING_ACTIVE	INFO	An HA failover. Generated when the Active High Availability (HA) Edge has been marked as down and the Standby is brought up to be the Active.
HA_INTF_STATE_CHANGED	ALERT	Generated when the HA Interface state is changed to Active.
HA_READY	INFO	Generated when both the Active and Standby Edges are up and synchronized.
HA_STANDBY_ACTIVATED	INFO	Generated when the HA Standby Edge has accepted the activation key, downloaded its configuration, and updated its software build.
HA_TERMINATED	INFO	Generated when HA has been deactivated on a SD-WAN Edge.
INVALID_JSON	CRITICAL	Generated when a SD-WAN Edge received an invalid response from MGD.
IP_SLA_PROBE	Up = INFO, Down = ALERT	Generated when an IP ICMP Probe state change.
IP_SLA_RESPONDER	Up = INFO, Down = ALERT	Generated when an IP ICMP Responder state change.
LINK_ALIVE	INFO	Generated when a WAN link is no longer DEAD.
LINK_DEAD	ALERT	Generated when all tunnels established on the WAN link have received no packets for at least seven seconds.
LINK_MTU	INFO	Generated when WAN link MTU is discovered.
LINK_UNUSABLE	ALERT	Generated when WAN link transitions to UNUSABLE state.
LINK_USABLE	INFO	Generated when WAN link transitions to USABLE state.
MGD_ACTIVATION_ERROR	ERROR	Generated when a SD-WAN Edge activation failed. Either the activation link was not correct, or the configuration was not successfully downloaded to the Edge.
MGD_ACTIVATION_PARTIAL	INFO	Generated when a SD-WAN Edge is activated partially, but a software update failed.
MGD_ACTIVATION_SUCCESS	INFO	Generated when a SD-WAN Edge has been activated successfully.
MGD_CONF_APPLIED	INFO	Generated when a configuration change made on the Orchestrator has been pushed to SD-WAN Edge and is successfully applied.
MGD_CONF_FAILED	INFO	Generated when the SD-WAN Edge failed to apply a configuration change made on the Orchestrator.
MGD_CONF_ROLLBACK	INFO	Generated when a configuration policy sent from the Orchestrator had to be rolled back because it destabilized the SD-WAN Edge.
MGD_CONF_UPDATE_INVALID	INFO	Generated when a SD-WAN Edge has been assigned an Operator Profile with an invalid software image that the Edge cannot use.
MGD_DEACTIVATED	INFO	Generated when a SD-WAN Edge is deactivated based on user request by mgd.
MGD_DEVICE_CONFIG_WARNING/ERROR	WARNING, INFO	Generated when an inconsistent/invalid device setting is detected.
MGD_DIAG_REBOOT	INFO	Generated when a SD-WAN Edge is rebooted by a Remote Action from the Orchestrator.
MGD_DIAG_RESTART	INFO	Generated when the data plane service on the SD-WAN Edge is restarted by a Remote Action from the Orchestrator.
MGD_EMERG_REBOOT	CRITICAL	Generated when a SD-WAN Edge is rebooted to recover from stuck processes by vc_procmon.
MGD_ENTER_LIVE_MODE	DEBUG	Generated when the management service on a SD-WAN Edge is entering the LIVE mode.
MGD_EXIT_LIVE_MODE	DEBUG	Generated when the management service on a SD-WAN Edge is exiting the LIVE mode.
MGD_EXITING	INFO	Generated when the management service on a SD-WAN Edge is shutting down for a restart.
MGD_EXTEND_LIVE_MODE	DEBUG	Generated by a SD-WAN Edge when Live mode is extended.
MGD_FLOW_STATS_PUSH_FAILED	DEBUG	Generated by a SD-WAN Edge when Flow stats pushed to Orchestrator failed.
MGD_FLOW_STATS_PUSH_SUCCEEDED	DEBUG	Generated by a SD-WAN Edge when Flow stats pushed to Orchestrator succeeded.
MGD_FLOW_STATS_QUEUED	INFO	Generated by a SD-WAN Edge when Flow stats pushed to Orchestrator is queued.
MGD_HARD_RESET	INFO	Generated when a SD-WAN Edge is restored to its factory-default software and configuration.
MGD_HEALTH_STATS_PUSH_FAILED	DEBUG	Generated by a SD-WAN Edge when Health stats pushed to Orchestrator failed.
MGD_HEALTH_STATS_PUSH_SUCCEEDED	DEBUG	Generated by a SD-WAN Edge when Health stats pushed to Orchestrator succeeded.
MGD_HEALTH_STATS_QUEUED	INFO	Generated by a SD-WAN Edge when Health stats pushed to Orchestrator is queued.
MGD_HEARTBEAT	INFO	Generated by a SD-WAN Edge when Heartbeat is generated to Orchestrator.
MGD_HEARTBEAT_FAILURE	INFO	Generated by a SD-WAN Edge when generated Heartbeat to Orchestrator failed.
MGD_HEARTBEAT_SUCCESS	INFO	Generated by a SD-WAN Edge when generated Heartbeat to Orchestrator succeeded.
MGD_INVALID_VCO_ADDRESS	WARNING	Generated when an invalid address for Orchestrator was sent in a management plane policy update and was ignored.
MGD_LINK_STATS_PUSH_FAILED	DEBUG	Generated by a SD-WAN Edge when Link stats pushed to Orchestrator failed.
MGD_LINK_STATS_PUSH_SUCCEEDED	DEBUG	Generated by a SD-WAN Edge when Link stats pushed to Orchestrator succeeded.
MGD_LINK_STATS_QUEUED	INFO	Generated by a SD-WAN Edge when Link stats pushed to Orchestrator is queued.
MGD_LIVE_ACTION_FAILED	DEBUG	Generated by a SD-WAN Edge when Live Action failed.
MGD_LIVE_ACTION_REQUEST	DEBUG	Generated by a SD-WAN Edge when Live Action is requested.
MGD_LIVE_ACTION_SUCCEEDED	DEBUG	Generated by a SD-WAN Edge when Live Action is succeeded.
MGD_NETWORK_MGMT_IF_BROKEN	ALERT	Generated when the Management network is set up incorrectly.
MGD_NETWORK_MGMT_IF_FIXED	WARNING	Generated when a Network is restarted twice to fix the Management Network inconsistency.
MGD_NETWORK_SETTINGS_UPDATED	INFO	Generated when new network settings are applied to a SD-WAN Edge.
MGD_SET_CERT_FAIL	ERROR	Generated when the installation of a new PKI certificate for Orchestrator communication on a SD-WAN Edge has failed.
MGD_SET_CERT_SUCCESS	INFO	Generated when a new PKI certificate for Orchestrator communication is installed successfully on a SD-WAN Edge.
MGD_SHUTDOWN	INFO	Generated when the SD-WAN Edge diagnostic shutdown based on user request.
MGD_START	INFO	Generated when the management daemon on the SD-WAN Edge has started.
MGD_SWUP_DOWNLOAD_FAILED	ERROR	Generated when the download of an Edge software update image has failed.
MGD_SWUP_DOWNLOAD_SUCCEEDED	DEBUG	Generated when the download of an Edge software update image has succeeded.
MGD_SWUP_IGNORED_UPDATE	INFO	Generated when a software update is ignored at the activation time, because SD-WAN Edge is already running that version.
MGD_SWUP_INSTALL_FAILED	ERROR	Generated when a software update installation failed.
MGD_SWUP_INSTALLED	INFO	Generated when a software update was successfully downloaded and installed.
MGD_SWUP_INVALID_SWUPDATE	WARNING	Generated when a software update package received from the Orchestrator is invalid.
MGD_SWUP_REBOOT	INFO	Generated when the SD-WAN Edge is being rebooted after a software update.
MGD_SWUP_STANDBY_UPDATE_FAILED	ERROR	Generated when a software update of the standby HA Edge failed.
MGD_SWUP_STANDBY_UPDATE_START	INFO	Generated when the HA standby software update has started.
MGD_SWUP_STANDBY_UPDATED	INFO	Generated when a software update of the standby HA Edge has started.
MGD_SWUP_UNPACK_FAILED	ERROR	Generated when an Edge has failed to unpack the downloaded software update package.
MGD_SWUP_UNPACK_SUCCEEDED	INFO	Generated when an Edge has succeeded to unpack the downloaded software update package.
MGD_UNREACHABLE	EMERGENCY	Generated when the data plane process could not communicate to the management plane proxy.
MGD_VCO_ADDR_RESOLV_FAILED	WARNING	Generated when the DNS resolution of the Orchestrator address failed.
MGD_WEBSOCKET_INIT	DEBUG	Generated when a WebSocket communication is initiated with the Orchestrator.
MGD_WEBSOCKET_CLOSE	DEBUG	Generated when a WebSocket communication with the Orchestrator is closed.
NSD_MIGRATION_TASKS_QUEUED		Generated when the Enterprise customers have pending migration tasks for the Gateways that are attached to Non SD-WAN Destinations.
PEER_UNUSABLE	ALERT	Generated when overlay connectivity to a peer goes down while transmitting peer stats.
PEER_USABLE	INFO	Generated when overlay connectivity to a peer resumes after a period of unusability.
PORT_SCAN_DETECTED	INFO	Generated when port scan is detected.
QOS_OVERRIDE	INFO	Generated to flip traffic path (gateway or direct).
REBALANCE_EDGE_SUCCEEDED		Generated when the Enterprise customers have successfully rebalanced the required Edges from the quiesced Gateway to the new Gateway.
SLOW_START_CAP_MET	NOTICE	Generated when the Bandwidth measurement slow-start cap limit is exceeded. It will be done in Burst mode
SWITCH_GATEWAY_COMPLETED		Generated when the Enterprise customers have successfully switched the traffic from the quiesced Gateways to new Gateways for Non SD-WAN Destinations.
SWITCH_GATEWAY_FAILED		Generated when the Switch Gateway action for a Non SD-WAN Destination fails during the SD-WAN Gateway migration.
VPN_DATACENTER_STATUS	INFO, ERROR	Generated when a VPN Tunnel state change.
VRRP_FAIL_INFO	INFO	Generated when VRRP failed.
VRRP_INTO_MASTER_STATE	INFO	Generated when VRRP get into Primary state.
VRRP_OUT_OF_MASTER_STATE	INFO	Generated when VRRP get out of Primary state.

Arista VeloCloud SD-WAN Edge Configuration Changes That Can Trigger an Edge Service Restart

This topic discusses the SD-WAN™ configuration changes which can cause an Edge dataplane service restart, also known as the Edged process. Edged is one of many services that run on an Edge and this service handles dataplane tasks, i.e. managing customer traffic. A restart of the Edged service is not the same as a full Edge hardware reboot. Restarting this software process does cause a brief interruption in service and customer traffic is disrupted until this dataplane service resumes. The configuration changes seen below are made using the Orchestrator UI.

Device Settings

This section discusses changes made to the Device settings for either an SD-WAN Edge or a configuration Profile. These changes are made on the Orchestrator under:

Configure > Edge/Profile > Device , using the Classic UI.
Enterprise > SD-WAN > Configure > Edge/Profile > Device , using the New UI (default for 5.2.0 and later Orchestrators).

For Edges in a High Availability topology, the Edge service restart triggers an HA failover.

Note: If a Profile configuration change is made and an Edge using that Profile already has an Edge Override configured for that particular Device setting, the Edge is not affected by the Profile level configuration change.

Table 4. Device Settings
Edge Software Version	4.2.x	4.3.x	4.5.x	5.0.x	5.1.x	5.2.x	5.4.x	6.0.x
Configuration Change Type	Edge Service Restart?	Edge Service Restart?	Edge Service Restart?	Edge Service Restart?	Edge Service Restart?	Edge Service Restart?	Edge Service Restart?	Edge Service Restart?
Any BGP Configuration Change IPv4	No	No	No	No	No	No	No	No
Any OSPFv2 or OSPFv3 configuration Change	No	No	No	No	No	No	No	No
Any Static Route Configuration Change	No	No	No	No	No	No	No	No
Any Multicast Configuration Change	No	No	No	No	No	No	No	No
Authentication Settings in Global Segment	Yes	Yes	Yes	Yes	No	No	No	No
DNS Settings	No	No	No	No	No	No	No	No
NetFlow Enable/Disable/Port Change in Global Segment	No	No	No	No	No	No	No	No
NetFlow Collector IP Change	No	No	No	No	No	No	No	No
ICMP Probes/Responder	No	No	No	No	No	No	No	No
VRRP Settings	No	No	No	No	No	No	No	No
Cloud Security Service	No	No	No	No	No	No	No	No
Gateway Handoff Assignment	No	No	No	No	No	No	No	No
Configure VLAN	No	No	No	No	No	No	No	No
Interface Enable/Disable	Yes	Yes	Yes	Yes	Yes	Yes	Yes	Yes
Change the High Availability Interface	N/A	N/A	N/A	N/A	N/A	Yes	Yes	Yes
Activate High Availability with a Non-GE1 Interface	N/A	N/A	N/A	N/A	N/A	Yes	Yes	Yes
Activate GRE/BGP Support on a LAN Interface	N/A	N/A	N/A	N/A	N/A	No	No	No
DHCPv6 Relay	N/A	N/A	N/A	N/A	N/A	No	No	No
Activate Loss of Signal (LoS) for an Interface	N/A	No	No	No	No	No	No	No
Route Summarization	N/A	N/A	N/A	N/A	N/A	No	No	No
Management IP Change Note: MGT IP is deprecated from 4.3.x and later	Yes	N/A	N/A	N/A	N/A	N/A	N/A	N/A
Multi-Source QoS	No	No	No	No	No	No	No	No
SNMP Settings	No	No	No	No	No	No	No	No
NTP Servers	No	No	No	No	No	No	No	No
Visibility Mode	No	No	No	No	No	No	No	No
WAN Settings Changes	No	No	No	No	No	No	No	No
Enable/Disable WAN Overlay on an Enabled Interface	No	No	No	No	No	No	No	No
Renaming an Overlay for a GE Interface	No	No	No	No	No	No	No	No
Renaming an Overlay for a USB Interface	Yes	Yes	Yes	Yes	Yes	Yes	Yes	Yes
Wi-Fi Radio Settings at the Profile Level	No	No	No	No	No	No	No	No
Wi-Fi Radio Settings at the Edge Level	Yes	Yes	Yes	Yes	Yes	Yes	Yes	Yes
Advertise Enable/Disable on a GE Interface	No	No	No	No	No	No	No	No
High Availability Type Change	Yes	Yes	Yes	Yes	Yes	Yes	Yes	Yes
Change the IP Address, Mask or Default Gateway on an Enabled Interface	Yes	Yes	Yes	Yes	Yes	Yes	Yes	Yes
Add/Remove/Modify a Subinterface	Yes	Yes	Yes	Yes	Yes	Yes	Yes	Yes
Add/Remove/Modify a Secondary IP Address	No	No	No	No	No	No	No	No
Add/Remove/Modify VLAN on a GE Interface	Yes	Yes	Yes	Yes	Yes	Yes	Yes	Yes
Change the Interface Mode from ‘Access Port’ to ‘Trunk Mode’ or vice versa (Only with Corporate VLAN in the Trunk)	No	No	No	No	No	No	No	No
Add/Remove a VLAN on Switched Interface with ‘Trunk Mode’	Yes	Yes	Yes	Yes	Yes	Yes	Yes	Yes
Enable Cloud VPN for the first time	Yes	Yes	Yes	Yes	No	No	No	No
Disable/Enable Cloud VPN on a Profile	No	No	No	No	No	No	No	No
IPv6: Enable Support on the Routed Interface (Static)	N/A	N/A	Yes	Yes	Yes	Yes	Yes	Yes
IPv6: Enable Support on the Routed Interface (DHCPv6 Stateless)	N/A	N/A	Yes	Yes	Yes	Yes	Yes	Yes
IPv6: Enable Support on the Route Interface (DHCPv6 Stateful)	N/A	N/A	Yes	Yes	Yes	Yes	Yes	Yes
IPv6: Any BGP Configuration Change	N/A	N/A	No	No	No	No	No	No
IPv6: Any BFD Configuration Change	N/A	N/A	No	No	No	No	No	No
IPv6: Any Static Route Change Configuration Change	N/A	N/A	No	No	No	No	No	No
IPv6: Reverse Path Forwarding (Turn On: Strict)	N/A	N/A	No	No	No	No	No	No
IPv6: Reverse Path Forwarding (Turn On: Loose)	N/A	N/A	No	No	No	No	No	No
IPv6: Reverse Path Forwarding (Turn Off)	N/A	N/A	No	No	No	No	No	No
IPv6 Only: Change WAN Overlay Configuration	N/A	N/A	N/A	No	No	No	No	No
IPv6 Dual Stack: Change WAN Overlay Configuration	N/A	N/A	N/A	No	No	No	No	No
Enable/Disable Branch-to-Hub and Add/Remove a Hub Edge	No	No	No	No	No	No	No	No
Enable Branch-to-Hub, add a Hub Edge, and Enable Branch-to-Branch VPN with Cloud Gateway	No	No	No	No	No	No	No	No
Enable Branch-to-Hub, add a Hub Edge, and Enable/Disable Branch-to Branch Enable Cloud VPN with Dynamic Branch-to-Branch	No	No	No	No	No	No	No	No
Enable Branch-to-Hub, Enable/Disable Branch-to-Branch VPN with Dynamic Branch-to-Branch and Autoselect VPN Hub	No	No	No	No	No	No	No	No
Enable Branch-to-Hub, Enable/Disable Branch-to-Branch VPN with Dynamic Branch-to-Branch and Branch-to-Hub	No	No	No	No	No	No	No	No
Enable Branch-to-Hub, Enable/Disable Branch-to-Branch VPN with Dynamic Branch-to-Branch, Branch-to-Hub and Autoselect VPN Hub	No	No	No	No	No	No	No	No
Enable Branch-to-Hub, Enable/Disable Branch-to-Branch VPN with Dynamic Branch-to-Branch, Branch-to-Hub, and Enable/Disable Dynamic Branch-to-Branch	No	No	No	No	No	No	No	No
Enable Branch-to-Hub, Branch-to-Branch, execute a Hub Order change	No	No	No	No	No	No	No	No
Enable/Disable Branch-to-Hub, add/remove Hub-Cluster	No	No	No	No	No	No	No	No
Enable Branch-to-Hub with Hub-Cluster and Enable Branch-to-Branch VPN with Cloud Gateway	No	No	No	No	No	No	No	No
Enable Branch-to-Hub with Hub-Cluster and Enable/Disable Branch-to Branch VPN with Dynamic Branch-to-Branch	No	No	No	No	No	No	No	No
Enable Branch-to-Hub with Hub-Cluster, Enable/Disable Branch-to Branch VPN with Dynamic Branch-to-Branch, Autoselect VPN Hub	No	No	No	No	No	No	No	No
Enable Branch-to-Hub with Hub-Cluster, Enable/Disable Branch-to Branch VPN with Dynamic Branch-to-Branch and Branch-to-Hub	No	No	No	No	No	No	No	No
Enable Branch-to-Hub with Hub-Cluster, Enable/Disable Branch-to Branch VPN with Dynamic Branch-to-Branch, Branch-to-Hub and Autoselect VPN Hub	No	No	No	No	No	No	No	No
Enable Branch-to-Hub with Hub-Cluster, Enable/Disable Branch-to Branch VPN with Dynamic Branch-to-Branch, Branch-to-Hub, and Enable/Disable Dynamic Branch-to-Branch	No	No	No	No	No	No	No	No
Enable Branch-to-Hub, Branch-to-Branch with Hub-Cluster and execute a Hub order change	No	No	No	No	No	No	No	No
Enable Branch-to-Non SD-WAN Destination via Edge using Edge Override	No	No	No	No	No	No	No	No
Enable or Disable Analytics (Edge Intelligence)	Yes	Yes	Yes	Yes	Yes	Yes	Yes	Yes
Activate Intrusion Detection System/Intrusion Prevention System (IDS/IPS) as part of the Enhanced Firewall Service	N/A	N/A	N/A	N/A	N/A	Yes	Yes	Yes

Business Policy

This applies for both Edge and Profile level changes to Business Policies on the Configure > Business Policy page of the Orchestrator.

For Edges in a High Availability topology, the Edge service restart causes an HA failover.

Note: If a Profile business policy change is made and an Edge using that profile already has a matching, Edge-specific business policy configured, the Edge will not be affected by the Profile level business policy change as the Edge business policy overrides a matching Policy business policy.

Table 5. Business Policy: IPv4 Only
Configuration Type	Profile Level Only / Edge Level Only / Both Profile & Edge Override	Global Segment / Non-Global Segment	Edge Service Restart?
New/Modify/Delete Rule with Source ‘Any’	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Source None	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Source VLAN	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Source IP Address	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Source Ports & Operating System	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Destination ‘Any’	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Destination Internet	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Destination SD-WAN Edge	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Destination Non SD-WAN Destination	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
Newly Created User-Defined Application Map and Respective Application used as Match Criteria	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
Add 1000 Rules and then Delete All Rules	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Application ‘Any’	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Defined Application	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Priority High/Normal/Low	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Network Service Direct/Multi-Path/Internet Backhaul	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Link Steering Auto/Transport Group/Interface/WAN Link	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with NAT Enabled/Disabled	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Service Class Real Time/Transactional/Bulk	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
Enable/Disable SD-WAN Traffic Class and Weight Mapping	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
Enable/Disable SD-WAN Overlay Rate Limit	Both Profile & Edge Override	Global Segment & Non-Global Segment	No

Table 6. Business Policy: IPv6 Only
Configuration Type	Edge Service Restart?
Business Policy (IPv6 only)	No
New/Modify/Delete Rule with Source Any IPv6	No
New/Modify/Delete Rule with Source None IPv6	No
New/Modify/Delete Rule with Source VLAN IPv6	No
New/Modify/Delete Rule with Source IP Address IPv6	No
New/Modify/Delete Rule with Source Ports & Operating System IPv6	No
New/Modify/Delete Rule with Destination Any IPv6	No
New/Modify/Delete Rule with Destination Internet IPv6	No
New/Modify/Delete Rule with Destination SD-WAN Edge IPv6	No
New/Modify/Delete Rule with Destination Non SD-WAN Destination IPv6	No
Newly created user defied app map and respective application used as match criteria IPv6	No
Add 1000 Rules and then Delete All Rules IPv6	No
New/Modify/Delete Rule with Application Any IPv6	No
New/Modify/Delete Rule with Defined Application IPv6	No
New/Modify/Delete Rule with Priority High/Normal/Low IPv6	No
New/Modify/Delete Rule with Network Service Direct/Multi-Path/Internet Backhaul IPv6	No
New/Modify/Delete Rule with Link Steering Auto/Transport Group/Interface/WAN Link IPv6	No
New/Modify/Delete Rule with NAT Enabled/Disabled IPv6	No
New/Modify/Delete Rule with Service Class Real Time/Transactional/Bulk IPv6	No

Table 7. Business Policy: IPv4/IPv6 Dual Stack (Mixed Mode)
Configuration Type	Edge Service Restart?
New/Modify/Delete Rule with Source Any ‘Mixed Mode’	No
New/Modify/Delete Rule with Source None ‘Mixed Mode’	No
New/Modify/Delete Rule with Source VLAN ‘Mixed Mode’	No
New/Modify/Delete Rule with Source IP Address ‘Mixed Mode’	No
New/Modify/Delete Rule with Source Ports & Operating System ‘Mixed Mode’	No
New/Modify/Delete Rule with Destination Any ‘Mixed Mode’	No
New/Modify/Delete Rule with Destination Internet ‘Mixed Mode’	No
New/Modify/Delete Rule with Destination SD-WAN Edge ‘Mixed Mode’	No
New/Modify/Delete Rule with Destination Non SD-WAN Destination ‘Mixed Mode’	No
Newly Created User-Defined Application Map and Respective Application used as Match Criteria ‘Mixed Mode’	No
Add 1000 Rules and then Delete All Rules ‘Mixed Mode’	No
New/Modify/Delete Rule with Application Any ‘Mixed Mode’	No
New/Modify/Delete Rule with Defined Application ‘Mixed Mode’	No
New/Modify/Delete Rule with Priority High/Normal/Low ‘Mixed Mode’	No
New/Modify/Delete Rule with Network Service Direct/Multi-Path/Internet Backhaul No ‘Mixed Mode’	No
New/Modify/Delete Rule with Link Steering Auto/Transport Group/Interface/WAN Link ‘Mixed Mode’	No
New/Modify/Delete Rule with NAT Enabled/Disabled ‘Mixed Mode’	NAT is allowed when IP version is either IPv4 or IPv6 only. Mixed Mode is not supported.
New/Modify/Delete Rule with Service Class Real Time/Transactional/Bulk ‘Mixed Mode’	No

Firewall

This applies for both Edge and Profile level changes to setting found on the Configure > Firewall page. Changes include Firewall rules, 1:1 NAT rules, and Port-Forwarding rules.

For Edges in a High Availability topology, the Edge service restart will cause an HA failover.

Note: If a Profile rule change is made and an Edge using that profile already has a matching, Edge-specific rule configured, the Edge will not be affected by the Profile level rule change as the Edge rule overrides a matching Policy rule.

Table 8. Firewall Rules: IPv4 Only
Configuration Type	Profile Level Only / Edge Level Only / Both Profile & Edge Override	Global Segment / Non-Global Segment	Edge Service Restart?
Enable/Disable Firewall Status	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
Enable/Disable Firewall Logging	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Source ‘Any’ and an ‘Allow’ Action	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Source ‘None’ with ‘Allow’ Action	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Source IP Address with ‘Allow’ Action	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Source MAC Address with ‘Deny’ Action	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Ports with ‘Deny’ Action	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Destination Any with ‘Deny’ Action	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Destination None with ‘Allow’ and ‘Log’ Action	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Destination IP Address with ‘Allow’ and ‘Log’ Action	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Destination MAC Address with ‘Allow’ and ‘Log’ Action	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Destination Protocol with ‘Deny’ and ‘Log’ Action	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Destination Ports with ‘Deny’ and ‘Log’ Action	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
Newly Created User-Defined Application Map and a Respective Application Used as a Match Criteria	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
Add or Delete a Large Number of Rules (>1000)	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Application ‘Any’ with ‘Deny’ and ‘Log’ Action	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete Rule with Defined Application with DSCP tag with ‘Allow’ and ‘Log’	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete a Port Forwarding Rule	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
New/Modify/Delete a 1:1 NAT Rule	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
Edge Access with Support Access set to ‘Deny All’	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
Edge Access with Support Access with IP Addresses Configured	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
Edge Access with SNMP Access with Deny/Allow All LAN/IP Addresses	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
Edge Access with Local UI Web Access with Deny All/Allow All LAN/IP Address	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
Enable and Disable Firewall several times, having Firewall Logs Enabled in the Background and confirm that Edge Access is Still Working	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
Enable and Disable Firewall several times, having Firewall Logs Disabled in the Background and confirm that Edge Access is Still Working	Both Profile & Edge Override	Global Segment & Non-Global Segment	No
Turn Firewall Logs ON and OFF several times, having ‘Action’ already set with the Firewall Logs	Both Profile & Edge Override	Global Segment & Non-Global Segment	No

Table 9. Firewall Rules: IPv6 Only
Configuration Type	Edge Service Restart?
New/Modify/Delete Rule with Source ‘Any’ and ‘Allow’ Action	No
New/Modify/Delete Rule with Source ‘None’ and ‘Allow’ Action	No
New/Modify/Delete Rule with Source ‘IP Address’ and ‘Allow’ Action	No
New/Modify/Delete Rule with Source ‘MAC Address’ and ‘Deny’ Action	No
New/Modify/Delete Rule with Source ‘Ports’ and ‘Deny’ Action	No
New/Modify/Delete Rule with Destination ‘Any’ with ‘Deny’ Action	No
New/Modify/Delete Rule with Destination ‘None’ with ‘Allow’ and ‘Log’ Actions	No
New/Modify/Delete Rule with Destination ‘IP Address’ with ‘Allow’ and ‘Log’ Actions	No
New/Modify/Delete Rule with Destination ‘MAC Address’ with ‘Allow’ and ‘Log’ Actions	IPv6 does not support Destination MAC address
New/Modify/Delete Rule with Destination ‘Protocol’ with ‘Deny’ and ‘Log’ Actions	No
New/Modify/Delete Rule with Destination ‘Ports’ with ‘Deny’ and ‘Log’ Actions	No
Newly Created User-Defined Application Map and a Respective Application Used as a Match Criteria	No
Add or Delete a Large Number of Rules (>1000)	No
New/Modify/Delete Rule with Application ‘Any’ and ‘Deny’ and ‘Log’ Actions	No
New/Modify/Delete Rule with Defined Application with DSCP Tag and ‘Allow and ‘Log’ Actions	No
Stateful Firewall Rules Created for IPv6	No
New/Modify/Delete a 1:1 NAT Rule	No
New/Modify/Delete a Port Forwarding Rule	No

Table 10. Firewall Rules: IPv4/IPv6 Dual Stack (Mixed Use)
Configuration Type	Edge Service Restart?
New/Modify/Delete Rule with Source ‘Any’ and ‘Allow’ Action	No
New/Modify/Delete Rule with Source ‘None’ and ‘Allow’ Action	No
New/Modify/Delete Rule with Source ‘IP Address’ and ‘Allow’ Action	No
New/Modify/Delete Rule with Source ‘MAC Address’ and ‘Deny’ Action	No
New/Modify/Delete Rule with Source ‘Ports’ and ‘Deny’ Action	No
New/Modify/Delete Rule with Destination ‘Any’ with ‘Deny’ Action	No
New/Modify/Delete Rule with Destination ‘None’ with ‘Allow’ and ‘Log’ Actions	No
New/Modify/Delete Rule with Destination ‘IP Address’ with ‘Allow’ and ‘Log’ Actions	Destination with IP Address Not Supported
New/Modify/Delete Rule with Destination ‘MAC Address’ with ‘Allow’ and ‘Log’ Actions	Destination with MAC Address Not Supported
New/Modify/Delete Rule with Destination ‘Ports’ with ‘Deny’ and ‘Log’ Actions	No
Newly Created User-Defined Application Map and a Respective Application Used as a Match Criteria	No
Add or Delete a Large Number of Rules (>1000)	No
New/Modify/Delete Rule with Application ‘Any’ and ‘Deny’ and ‘Log’ Actions	No
New/Modify/Delete Rule with Defined Application with DSCP Tag and ‘Allow and ‘Log’ Actions	No
Stateful Firewall Rules Created for IPv6	No
New/Modify/Delete a 1:1 NAT Rule	No
New/Modify/Delete a Port Forwarding Rule	No

Segments

This section discusses changes made to the Segments page of the Orchestrator.

For Edges in a High Availability topology, the Edge service restart causes an HA failover.

Table 11. Segments
Configuration Type	Edge Service Restart?
New/Modify/Delete a New Segment	No
Per Customer, Per Segment Partner Gateway Handoff Change	No
Add a New Interface to a Segment	Yes
Modify Segment Detail Per Interface	No
Add/Remove Authentication Settings in a Non-Global Segment	No
Add/Remove NetFlow settings in a Non-Global Segment	No
Increase the Maximum Number of Segments through the Orchestrator System Settings	No

Overlay Flow Control (OFC)

This section discusses configuration changes made to the Overlay Flow Control (OFC) page of the Orchestrator.

For Edges in a High Availability topology, the Edge service restart causes an HA failover.

Table 12. Overlay Flow Control
Configuration Type	Edge Service Restart?
Change Route Order for specific route	No
Move Edge from a Preferred VPN Exit to an Eligible VPN Exit and vice-versa	No
Toggle Global Advertise option for Edge/Hub/Partner Gateway	No

Network Services

This section discusses changes made to the Network Services page of the Orchestrator.

For Edges in a High Availability topology, the Edge service restart causes an HA failover.

Table 13. Network Services
Configuration Type	Edge Service Restart?
Create/Delete Edge Cluster	No
Non SD-WAN Destinations	No
IPv6 Non SD-WAN Destination via Edge	No
Cloud Security Service	No
Create/Delete DNS Services	No
Private Network Names	No
Create/Delete Authentication Services	No

VeloCloud SD-WAN 5.2 - Administration Guide

Appendix

Enterprise-Level Orchestrator Alerts and Events

Supported SD-WAN Edge Events for Syslogs

Arista VeloCloud SD-WAN Edge Configuration Changes That Can Trigger an Edge Service Restart