https://live.paloaltonetworks.com/t5/ai-access-security-discussions/bandwidth-requirement-and-panorama/m-p/1253502#M38 <P>1. it is not required to onboard firewalls to SCM if theyre panorama managed, (important to differentiate between SCM (Strata Cloud Manager) and SLS (Strata Logging ervice). SCM is like Panorama for remote management, SLS is purely for logging)</P> <P>2. you can check here for bandwidth calculation :&nbsp;<A href="https://docs.paloaltonetworks.com/strata-logging-service/activation-and-onboarding/planning/sizing" target="_blank">https://docs.paloaltonetworks.com/strata-logging-service/activation-and-onboarding/planning/sizing</A></P> <P>3. where bandwidth is a potential problem, you can restrict which logs to forward, and opt to use SLS to take advantage of cloud connectivity versus backhauling to the central log collector</P> <P>4. yes, you can set different log forwarding preferences for individual security rules, you can even add filters inside the log forwarding profile so only 'interesting' logs get forwarded (e.g. only high and critical threat logs)</P> Wed, 06 May 2026 07:31:48 GMT reaper 2026-05-06T07:31:48Z https://live.paloaltonetworks.com/t5/ai-access-security-discussions/bandwidth-requirement-and-panorama/m-p/1253462#M37 <P>Hello Experts,</P> <P>We got 12+ NGFW worldwide, under Panorama Management (for logging only). Some of the sties have limited bandwidth.&nbsp;</P> <P>1. Is it necessary to onboard all the firewall to SCM?</P> <P>2. How much bandwidth required ? how to calculate?</P> <P>3. For those sites with limited bandwidth, possible to forwarding the logs to SCM?</P> <P>4. In order to limits the logs to SCM, is it possible to select certain rules to enable loggint to SCM?&nbsp;</P> <P>thanks</P> <P>SdG</P> Tue, 05 May 2026 10:09:25 GMT https://live.paloaltonetworks.com/t5/ai-access-security-discussions/bandwidth-requirement-and-panorama/m-p/1253462#M37 SeanDeHarris 2026-05-05T10:09:25Z https://live.paloaltonetworks.com/t5/ai-access-security-discussions/bandwidth-requirement-and-panorama/m-p/1253502#M38 <P>1. it is not required to onboard firewalls to SCM if theyre panorama managed, (important to differentiate between SCM (Strata Cloud Manager) and SLS (Strata Logging ervice). SCM is like Panorama for remote management, SLS is purely for logging)</P> <P>2. you can check here for bandwidth calculation :&nbsp;<A href="https://docs.paloaltonetworks.com/strata-logging-service/activation-and-onboarding/planning/sizing" target="_blank">https://docs.paloaltonetworks.com/strata-logging-service/activation-and-onboarding/planning/sizing</A></P> <P>3. where bandwidth is a potential problem, you can restrict which logs to forward, and opt to use SLS to take advantage of cloud connectivity versus backhauling to the central log collector</P> <P>4. yes, you can set different log forwarding preferences for individual security rules, you can even add filters inside the log forwarding profile so only 'interesting' logs get forwarded (e.g. only high and critical threat logs)</P> Wed, 06 May 2026 07:31:48 GMT https://live.paloaltonetworks.com/t5/ai-access-security-discussions/bandwidth-requirement-and-panorama/m-p/1253502#M38 reaper 2026-05-06T07:31:48Z