Hi,
I am struggling with WAN congestions once the firewall is updating itself (AV patterns, firmware etc.) as it uses the full available bandwidth making any other communication hardly possible.
Is there a way to identify that traffic in order to apply a policy for instance with a traffic shaping policy? I tried to use Any netword, Any Zone but https service as the updates seem to run via port 443. But this would also limit wanted traffic on 443 unless I move this role to the bottom of my policy setup. Can someone advice on how to filter it more accurately so that a) regular traffic is not affected and b) the Sophos XG firewall update process is limitted to a certain amount of bandwidth or low priority?
Thanks
Stefan
This thread was automatically locked due to age.
