This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About Nico
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About Nico
08-23-2023
5Posts
3Likes
0Solutions
Aug 23, 2023Last Visited
User
Activity
User
Profile
Latest posts by Nico
| Subject | Views | Posted |
|---|---|---|
| 4747 | 11-21-2012 06:50 AM | |
| 1739 | 11-15-2012 06:16 AM | |
| 3656 | 11-07-2012 02:41 AM | |
| 1760 | 11-10-2011 12:18 AM | |
| 1994 | 11-09-2011 02:48 PM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 1 Like | 11-21-2012 06:50 AM | |
| 1 Like | 11-07-2012 02:41 AM | |
| 1 Like | 11-15-2012 06:16 AM |
User Badges
Community Statistics
| Member Since | 06-07-2011 07:04 AM |
| Date Last Visited | 08-23-2023 07:37 AM |
| Posts | 5 |
| Total Likes Received | 3 |
11-15-2012
06:16 AM
1 Kudo
Try to schedule the report.. For some reason the PAN does not resolve host names in ad-hoc reports, only in scheduled reports.
... View more
11-07-2012
02:41 AM
1 Kudo
Same here, we're also running 4.1.8 (on a PA-5050 cluster). In my case it seems to happen most after we add or remove groups from the Include group list in the user identification config on the PA. The only way to get it running again is to execute "debug software restart user-id" on the CLI We also tried using the User-ID agent as a proxy but it made no difference for us
... View more
11-10-2011
12:18 AM
Hi Kelly, Thanks for the suggestion. I have no traffic going through the box, only the ftp test traffic. I tested multiple ftp connections, and indeed the throughput doubles with each stream (from 5% bandwidth usage to 10% with 2 simultaneous ftp downloads). I also did some sniffer traces and I don't see anything out of the ordinary there. I'll do some more tests today and open up a case via our integrator Thanks!
... View more
11-09-2011
02:48 PM
I've ran into an interesting throughput issue with a PA-5050 in my lab, maybe someone can shed some light on this strange behaviour. The setup: PA-5050 running 4.0.7 Two aggregated trunks: AE1 & AE2 AE1 assigned to VSYS1 (Server VSYS) AE2 assigned to VSYS6 (Client VSYS) The test: FTP download test from a Windows2003 machine (with FileZilla) in VSYS1 to an XP client in VSYS6. Both machines are connected with a single GigE connection. The test files on the FTP server: - 70MB ZIP file - 200MB EXE file - 400MB ISO file I get a consistent 60% bandwidth usage "ceiling" (no peaks, no drops) during the downloads of this files, which is what can be expected for a GigE connection without jumbo frames active. Now the fun stuff: when I activate a (any) profile (being it either IPS, AV, Anti Spyware or even only URL filtering) and this on the matching security rule (in either VSYS1 or VSYS6) I get the following bandwith usage values (measured on the XP workstation) during the transfer: - 70MB ZIP file: 5% bandwidth, but fluctuates between 0,5 and 15% - 200MB EXE file: 5% bandwidth ceiling (no drops, no peaks) - 400MB ISO file: 60% bandwith usage (ie "normal") If I enable a profile in both VSYS1 and VSYS6, the throughput drops by half: - 70MB ZIP file: 2,5% bandwidth, but fluctuates heavily between 0,2 and 8% - 200MB EXE file: 2,5% consistently - 400MB ISO file: 60% bandwith usage Any thoughts as why I see such a major throughput drop in this PA-5050 box when I activate a profile ?
... View more
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks