cancel
Showing results for 
Search instead for 
Did you mean: 

Who rated this post

L1 Bithead

Whatever hypervisor you are using, with proper CPU pinning (or CPU affinity) settings and SR-IOV settings, Threat Prevention can achieve 10 Gbps on modern high performance servers.

 

Check the Table 4, where Threat Prevention achieves 13552 Mbps.
See https://eantc.de/fileadmin/eantc/downloads/News/2019/EANTC-TestReport-PaloAlto-v1.0.pdf

 

However, most network engineers cannot properly tune the above settings, and they are impossible to tune in the public cloud.

Also, since HTTPS traffic accounts for more than 80% of any enterprise traffic, Threat Prevention's 10 Gbps is rarely useful because SSL Decryption is the bottleneck.

 

Even in the Table 4 above, the throughput of SSL Decryption is only 24722 Mbps (about 18% of Threat Prevention).

 

 

Who rated this post