Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 5 replies
  • Subscribers 28 subscribers
  • Views 2987 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

QOS Firewall rule for IPTV box

David Harmer

 HI All,

I am trying to create a QOS rule for my IPTV box to help stop the shuttering. 

I have an XG210 and 10/1 down/up internet (port 1 lan, port 2 wan)

I have attached a picture of my current rule below (I have tried many configs)

The Protected service points to my IPTV box ip Address

I have tried different suggestions/tutorials that I have found on the net, but still cant get it to work

Any help would be appreciated. I am new to the Sophos firewall, so clear instructions would help!

Thanks

 



This thread was automatically locked due to age.
  • +1

    Hello David,

    I believe the rule needed for IPTV is LAN to WAN, it does seem you have created a DNAT rule for incoming connections. We would like to know if you are using a server on your LAN that your IPTV would connect to or using the internet as a source.

    If the case is the latter then you would need to create a LAN to WAN rule for that IPTV and apply QoS policy and may apply the amount of bandwidth and priority set for that traffic

  • +1

    First things first.

    The firewalls logic is that the creator of the connection has the corresponding rule. What I mean. Even though your IPTV Box downloads the stuff to play, the one that demands these stuff to be downloaded is your own IPTV Box. So you have to make a rule FROM your IPTV Box TO the internet.

    If your provider connected remotely to download the content to your box, then you would need a WAN to LAN rule.

    So the answer is:

    Make a user rule (you dont need a business application rule)

    From: LAN - Allowed Networks(your IPTV ip)

    Destination WAN - Networks (ANY)

    Traffic Shaping (use what is applicable for you). Check if the high guarantee is the right for you bandwidth-wise, or tweak it or even better! make a new rule!

  • 0 in reply to Panagiotis Vakerlis

    Thank you both. It seems much easier when it is explained in English!

    Do I need to turn on "Traffic Shapping" in system services?

    I have attached a picture of my rule

    I still struggle with choppy video but at least I have a working rule now to work with

  • +1 in reply to David Harmer

    No you don't. Bear in mind that the rule you have enforces a minimum of 2MBits. I don't know if it's right for your setup. If not, you can edit it. 

    What you could though on traffic shaping in services is declare your real bandwidth so the sfos can make better management(eg 10000 I assume is yours)