Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 6 replies
  • Subscribers 3 subscribers
  • Views 11922 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Bandwidth throttle test not throttling

AaronJohnston

Alright this is a follow up to https://community.sophos.com/products/unified-threat-management/f/54/p/75627/290550#290550

I have a test environment configured with a Sophos UTM 9 virtual machine.  I have eth 5 connected as a trunk interface only carrying VLAN 25 traffic at the moment (Default gateway is this interface for clients in this subnet)  I have another interface configured on default VLAN 1 and have an IP in a different subnet on this interface (Default gateway is this interface for clients in this subnet).  I have a VM in VLAN 1 and a PC plugged in VLAN 25.

I have created a rule to limit traffic from VLAN 25 subnet to VLAN 1 subnet NetBIOS/CIFS to 50kbps.  I have applied this to both interfaces to ensure copies initiated from either subnet are limited.  However when I run a file transfer my throughput is not reflected by the limit put in place (Transferring at around 1 Gbps).  What are the prerequisites to have these rules enabled?  Anything I'm missing here?



This thread was automatically locked due to age.
Parents
  • 0

    Aaron, VLAN 1 is reserved in the UTM.  Do you still have the problem if you modify that?

    Cheers - Bob

  • 0 in reply to BAlfson

    I added a VLAN 40 interface.  So I applied the throttling rule to both VLAN 40 interface and VLAN 25 interface and file transfer is still exceeding my set limits.  Bypassing VLAN 1 doesn't seem to change my results unfortunately.

    Test environment is running the VM home version just as an FYI.

  • 0 in reply to AaronJohnston

    Please show pictures of the Download Throttling rule and Traffic Selector.

    Cheers - Bob

  • 0 in reply to BAlfson

    Here’s my current setup in detail:

     

    VLAN 25 Interface (Site Test) – MS Surface connected here – (192.168.20.10)

    VLAN 40 Interface (Internal Guest) – Win 8 VM connected here (192.168.1.10)

     

    Surface connected directly to switch in VLAN 25

    UTM Virtual machine has trunk interface to VMware host (VLAN 40 and VLAN 25 interfaces run over this trunk)

     

    Traffic selectors:

     

    Guest Bandwidth Throttle rule:

     

     

    Site Test Bandwidth Throttle rule:

     

    Transfer throughput from Surface to Win 8 VM (Not running at 500kbps):

     

  • 0 in reply to AaronJohnston

    Check only the "Guest to Site" Traffic Selector for the rule bound to the "Internal (Guest)" interface as the "Site to Guest" Selector has no effect.  Similarly for the "Site Test" interface.

    Confirm on the 'Status' tab that the "Internal (Guest)" interface is enabled for QoS.  Any luck now?

    Cheers - Bob

  • 0 in reply to BAlfson

    Looking good now!  I had both selectors in there to troubleshoot, forgot to take the outbound selector back out. 

    So I'm wondering if I try VLAN 1 again if I'll get the same results?  I'll take a stab at it.

    Thanks again

Reply Children
No Data