Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 14 replies
  • Answers 2 answers
  • Subscribers 30 subscribers
  • Views 4473 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Force all streaming video to specific gateway?

Arie

We're running an educational setup in a rural area with limited internet access. I have two gatewys configured:

  1. DSL @ 3 Mbps
  2. LTE/4G @ 20 Mbps but subject to 'network management' (i.e. throttling) if we use too much data (provider won't specifiy how much is too much).

Is there a way to route all streaming video (the largest bandwidth hog) to the DSL gateway?

I know this can be done by user, group, service, etc - but I can't find a clear-cut way to do this for streaming.



This thread was automatically locked due to age.
  • 0 in reply to Arie

    In this Case - Yes. 

    Multipath Rules are some kind the same mechanic like XG performs with its Firewall Handling.  

  • 0 in reply to LuCar Toni

    Maybe I misunderstand Application policies, but to me you setup a policy on the preferred gateway that allows video streaming and on the none preferred gateway you setup another application policy that blocks video streaming. That forces all video streaming on the the preferred gateway?

    Ian

  • 0 in reply to rfcat_vk

    You are completely right in this approach.

    The point is, if you have two Gateways and want to force for example Youtube to go to Gateway A and the Rest of the HTTPs Traffic to Gateway B, this is not possible. 

    It uses HTTPs Traffic (443), so XG cannot split the traffic properly. 

     

    Application Control is a Block/allow mechanism. So if the criteria matching above (Source / Destination / Service), XG will perform the block / allow.

    You are stuck now in this Firewall rule and we are not considering any other firewall rule below (First match). 

  • 0

    Try this:

    Go to Hosts and Services, FQDN Host, and create a host object for every YouTube domain.  Put them in an FQDN group called "Streaming Media Domains".

    Create a firewall rule (higher than your normal rule) with destination WAN, and destination network Streaming Media Domains.  Set the primary gateway.

     

    Now all of YouTube should be sent out using that firewall rule.  You can add more domains to the FQDN Group.  Vimeo, facebook, whatever.

    So you could just monitor stuff to find more domains doing streaming media...  or you could block it in your main web rule.  Go to the Web Policy that most of your traffic goes to and create a policy rule for filetype "Video Files" and set to block.

    Now wait for your users to complain they cannot watch a video (or look for blocks in logs).  Add the video domains to your FQDN group.