Going through the process of troubleshooting why Cisco's Stealthwatch is showing Application traffic at 2+ petabytes of data.
On the outset, nothing seems terribly out of the ordinary. With only a few KB of traffic here and there. But on occasion, I will see 2+ Petabytes of traffic to Box. Kind of strange, and during those times I've both checked the user's machine and our firewalls for any abnormalities.
Hell, most times Palo barely registers a few bytes from the hosts, and not to Box. So it's a bit odd and while I have a few places to start looking, I was curious if anyone else had experienced this issue in the past.
No comments:
Post a Comment