07-18-2011 11:27 PM
Hi
Wrong user traffic in ACC than the actual traffic.
Here we are monitoring our server Farm using Tap mode with our Palo Alto
In ACC we can see very high traffic from some Domain/User or IP to some servers.Lets say some users making 20 gb traffic Exchange server or other servers with in Hour.If you look at the detailed traffic there is no such traffic for that specific user.We noticed this with PAN-OS 3.1.8,4.0.1 and 4.0.3 versions from different places.Is it a bug or any other issue
Thanks
Shabeer
07-19-2011 10:22 AM
The application traffic shown in the first table in the ACC is collected regardless of your log settings. So when you say that you look at the traffic logs and do not see the same statistics, it is possible that you are not logging that data, or that the log data is not reflective of the entire time frame shown in the ACC. I hope this helps. Thanks,
~Jamie
07-19-2011 10:48 AM
Hi All
I am Using PA-4020 with PAN-OS 3.1.8 and PA-5020 with PAN-OS 4.0.3.The report in ACC from a user to exchange is 20 GB which is impossible in this network. Also after some time the large traffic pointed to another user
Thanks
shabeer
07-19-2011 03:14 PM
Hi Shabeer,
Can you please open up a case for support to investigate this issue further.
Thanks
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
