SFTP slow transfer showing incomplete data in logs.

Showing results for 
Show  only  | Search instead for 
Did you mean: 
Please sign in to see details of an important advisory in our Customer Advisories area.

SFTP slow transfer showing incomplete data in logs.

L0 Member

Hello everyone.


I am facing an issue when I transfer files via SFTP and SCP is slow when I introduce Palo alto in the path.


Data path: 

Server > Core switch > Palo alto > Fortinet > Internet ( AWS )

Server > Core switch  > Fortinet > Internet ( AWS )

Speed with Palo Alto : 70-150KB/s

Speed without Palo Alto : 600 - 700KB/s

I have created a plain firewall rule on top and also disabled server inspection response. but no luck.

I tried to create an app override policy but that is not getting hit.



All I can see in logs is insufficient data with multiple random ports ( ranging from 33500 to 33550 getting allowed  and when checking the same using session id , i see very less count of L7 application data received.










Cyber Elite
Cyber Elite


Have you checked speed/duplex settings on the interfaces to ensure you don't have a mismatch here? Also what does your application-override entry actually look like? 

  • 1 replies
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!