Sophos UTM 9 : QoS best practices

Question

Hi, 
 
 Here is a quick network diagram :

Our context / goal : 
 
 Some users are experiencing slow Internet. 
 So we would like to optimize our outgoing Internet traffic. 
 
 Questions : 
 
 If we do not host any service internally, only outgoing traffic to Internet. Should we set QoS on internal interfaces ? 
 
 For example : on internal vlan interfaces (users, servers, network&hellip;) 
 Because this will have an impact on internal bandwidth between users and servers.

If we should set QoS internally to optimize our outgoing internet traffic, should we have a total of all QoS for internal interfaces under a total of external interface ?
 
 For example :
 
 Interface server : 10 Mbps (QoS) 
 Interface user : 20 Mbps (QoS) 
 Interface external (internet) : 30 Mbps (QoS)

If we configure a RED tunnel, should we configure the QoS with the same bandwidth QoS on both sides ? 
 Could we configure a bandwidth pool without any QoS interface enabled ? Is is useless ? 
 What are the best practices to configure bandwidth pool or download throttling ?
 
 From a specific rule to a global one ?

Jaydeep · Answer

Hi Denis Chatenay 
 1. I would advise applying QoS on the external interface, given that you will be downloading webpages or content from the Internet. I would suggest going through this external article: https://www.fastvue.co/sophos/blog/limit-youtube-traffic-sophos-utm-qos/ which should help you configure this. 
 2. On the external interface, you should only specify the bandwidth you have from ISP for both Upload and Download. 
 3. Do you want to apply QoS for the devices behind RED? 
 4. You will require to Enable the Interface on which you'd apply QoS. 
 5. The external article I mentioned earlier should help you with that.