https://live.paloaltonetworks.com/t5/general-topics/hardware-processing/m-p/164728#M53097 <P>Hi,</P><P>&nbsp;</P><P><SPAN class="">Modifying the security profiles that come by default to drop. Hardware processing will rise at any given time?<BR /></SPAN></P><P><SPAN class=""><SPAN class="short_text">Thank you</SPAN></SPAN></P> Wed, 05 Jul 2017 18:15:44 GMT MarcoMaysundo 2017-07-05T18:15:44Z https://live.paloaltonetworks.com/t5/general-topics/hardware-processing/m-p/164728#M53097 <P>Hi,</P><P>&nbsp;</P><P><SPAN class="">Modifying the security profiles that come by default to drop. Hardware processing will rise at any given time?<BR /></SPAN></P><P><SPAN class=""><SPAN class="short_text">Thank you</SPAN></SPAN></P> Wed, 05 Jul 2017 18:15:44 GMT https://live.paloaltonetworks.com/t5/general-topics/hardware-processing/m-p/164728#M53097 MarcoMaysundo 2017-07-05T18:15:44Z https://live.paloaltonetworks.com/t5/general-topics/hardware-processing/m-p/164948#M53113 <P>Hi Marco!</P> <P>&nbsp;</P> <P>Could you elaborate on what you'd like to know exactly ?</P> <P>&nbsp;</P> <P>The default security profiles cannot be changed so you may be talking about something else.</P> <P>In most situations changing the action on something (profiles, policies, ..) to drop, as opposed to allow, will lower hardware processing as you're now discarding something instead of applying inspection on the packets.</P> Thu, 06 Jul 2017 12:25:23 GMT https://live.paloaltonetworks.com/t5/general-topics/hardware-processing/m-p/164948#M53113 reaper 2017-07-06T12:25:23Z https://live.paloaltonetworks.com/t5/general-topics/hardware-processing/m-p/164963#M53115 <P>Hello!<BR />Yes, what I wanted to express was the change in the exceptions. If the security profiles on threats, default and stric, I clone and change signatures that come by default from alert to drop. Would hardware processing increase?</P><P>We can see that the signatures have by default to alert the traffic that matches these. If I change the action to drop in these and several more signatures, 98 more. Processing increases gradually?<span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="defaultCustom.PNG" style="width: 800px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/10189iF9FED482DE0D7278/image-size/large/is-moderation-mode/true?v=v2&amp;px=999" role="button" title="defaultCustom.PNG" alt="defaultCustom.PNG" /></span><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="dropCustom.PNG" style="width: 800px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/10188i46A6759B50B883EE/image-size/large/is-moderation-mode/true?v=v2&amp;px=999" role="button" title="dropCustom.PNG" alt="dropCustom.PNG" /></span></P> Thu, 06 Jul 2017 14:23:43 GMT https://live.paloaltonetworks.com/t5/general-topics/hardware-processing/m-p/164963#M53115 MarcoMaysundo 2017-07-06T14:23:43Z https://live.paloaltonetworks.com/t5/general-topics/hardware-processing/m-p/164977#M53116 <P>That makes drastically more sense. Your processing wouldn't increase but by the time it gets to threat processing you won't see that big of a decrease either. Anytime you actually drop something you'll actually save a little in processing as it doesn't continue the inspection process, a drop action will never increase processing load.&nbsp;</P> Thu, 06 Jul 2017 15:15:07 GMT https://live.paloaltonetworks.com/t5/general-topics/hardware-processing/m-p/164977#M53116 BPry 2017-07-06T15:15:07Z