Sophos XG: Effective QoS

Hi every one, today I would like to share experiences how to create a effective traffic policy

Traffic Shaping (QoS) is a method to guarantee a bandwidth between individual applications or protocols,  you can do this at the application level, web category level, user/group level or firewall rule level.
But first at all, you need to decide on your strategy for shaping traffic.

Step 1: Total Available WAN Bandwidth

Step 2: Create Traffic Shaping Policy

First Look, we see a lot of pre-built templates

ADD new


NOTE:

* Users: Restricts the bandwidth for a particular user or for a user group.
* Rules: Restricts the bandwidth of any entry to which the firewall rule is applied.
* Web Categories: Restricts the bandwidth for the URL categorized under the web categories.
* Applications: Restricts the bandwidth for the applications categorized under the application categories.
—-
* Limit: In this type of policy, the user cannot exceed the defined bandwidth limit.
* Guarantee: In this type of policy, the user is allocated the guaranteed amount of bandwidth and can draw the bandwidth up to the defined Limit, if available.
—-
* Individual: Allocated bandwidth is for the particular User/Rule/Web Category/Application only.
* Shared: Allocated bandwidth is shared among all the Users/Rules/Web Categories/Applications who have been assigned this policy.

Option: Add Schedule wise Traffic Shaping Policy Details to override default Traffic Shaping Policy Details

Step 3: Apply Traffic Shaping Policy

  1. User/Group based
    Go to Groups what be created manually or synchronized from AD.

    Create a Firewall Rule for this group

  2. Rule based

    User’s traffic shaping policy will be applied automatically if Match known users is selected.
    You need to select traffic shaping policy for the rule if Match known users is not selected.
  3. Application & Web  based
    You can visit this article:http://techbast.com/2016/08/sophos-xg-traffic-shaping-policy.html

Feel free to leave any comments.

Thanks for your reading!

 

Be the first to comment

Leave a Reply