Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 3 replies
  • Subscribers 28 subscribers
  • Views 653 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

sophos firewall ipsec traffic priority on wan interface

Sophos22

hello community,

easy question for you ...

how can i set traffic priority for ipsec traffic on wan interface (outgoing)?

i would to priorize ipsec traffic (from sophos firewall) over other traffic to internet.

thank you.

kind regards,

chris



This thread was automatically locked due to age.
  • 0

    I believe IPSEC site-to-site creates a firewall rule. In the firewall rule, At the bottom of the firewall rule's details there is a Traffic Shaping field. You can create or use a Guarantee rule-based policy to reserve bandwidth for IPSEC. In the Traffic Shaping policy, you'd want it to be Rule-based, higher priority (lower number), Guarantee (and guarantee a reasonable amount of bandwidth), and Shared usage type. I think... I'm just starting to learn traffic shaping.

  • 0 in reply to Wayne Folta

    not correct, there is no rule in gui visible

  • +1

    I would not do this based on IPsec. Instead based of the traffic "within IPSec". So you have a Rule LAN to VPN and LAN to WAN. You can give LAN to VPN a higher priority, which bascially mean, the firewall will put this traffic infront of the other traffic. This will resolve the need of figure out, how the appliance deal with IPsec.