On the Quality of Service (QoS) > Download Throttling tab you can define and manage rules to throttle incoming traffic. If packets are coming in faster than the configured threshold, excess packets will be dropped immediately without being listed in the firewall rules log file. As a result of TCP congestion avoidance mechanisms, affected senders should reduce their sending rates in response to the dropped packets.
To create a download throttling rule, proceed as follows:
On the Download Throttling tab, select an interface.
From the Bound to interface drop-down list, select the interface for which you want to create a download throttling rule.
Click New Download Throttling Rule.
The Add Throttling Rule dialog box opens.
Make the following settings:
Name: Enter a descriptive name for this download throttling rule.
Position: The position number, defining the priority of the rule. Lower numbers have higher priority. Rules are matched in ascending order. Once a rule has matched, rules with a higher number will not be evaluated anymore. Place the more specific rules at the top of the list to make sure that more vague rules match last.
Limit (kbit/s): The upper limit (in Kbit) for the specified traffic. For example, if you want to limit the rate to 1 Mbit/s for a particular type of traffic, enter 1024.
Limit: Combination of traffic source and destination where the above defined limit should apply:
Traffic selectors: Select the traffic selectors for which you want to throttle the download rates. The defined limit will be divided between the selected traffic selectors.
Comment (optional): Add a description or other information.
The new download throttling rule appears on the Download Throttling list.
Enable the rule.The new rule is disabled by default (toggle switch is gray). Click the toggle switch to enable the rule.The rule is now enabled (toggle switch is green).
To either edit or delete a rule, click the corresponding buttons.
|© 2019 Sophos Limited
|Sophos UTM 9.600