QOS Sanity Check : Policy Rules->Individual BW Usage Type->Individual Limit Separately-> Enable

Hi just doing a sanity check for some QOS configuration.

I have a site that needs an unauthenticated /24 subnet to connect to certain fqdns and need to throttle individual clients in the subnet to a max of around 10 Mbits (1250 KBits)

Setting a QOS rule attached to a firewall rule does not seem to result in bandwidth being allotted per client as I can see from the client connection and performance it seems like the qos ceiling gets when a couple of clients upload data hitting this rule and latency shoots to over +200 ms for these destinations causing connections to time out to other clients.

Firewall is running 19.5



Edited TAGs
[edited by: emmosophos at 7:17 PM (GMT -8) on 25 Jan 2023]
Parents
  • Hello  ,

    Thank you for reaching out to the community, well let me explain you the conceptual difference between the two:

    Example for Individual concept:

    #4 users
    1 firewall rule
    1QOS 1mbps individual
    each wil get 256

    #Same for 2 firewall rules
    2 users each rule
    1QOS 1mbps individual
    Each will get 512

    #Now 4 rules for 4 users
    1 user each firewall rule.
    each will get 1MBPS

    Example for Shared concept:

    #4 users
    1 firewall rule
    1QOS 1mbps Shared

    #Same for 2 firewall rules
    2 users each rule total of 4 users
    1QOS 1mbps shared
    Each will get 256

    #Now 4 rules for 4 users
    1 user each firewall rule.
    each will get 256

    Individual - multiplying factor
    Shared - Within that QOS range
    ex : 1mbps

    Thanks & Regards,
    _______________________________________________________________

    Vivek Jagad | Technical Account Manager 3 | Cyber Security Evolved


    Sophos Community | Product Documentation | Sophos Techvids | SMS
    If a post solves your question please use the 'Verify Answer' button.

Reply
  • Hello  ,

    Thank you for reaching out to the community, well let me explain you the conceptual difference between the two:

    Example for Individual concept:

    #4 users
    1 firewall rule
    1QOS 1mbps individual
    each wil get 256

    #Same for 2 firewall rules
    2 users each rule
    1QOS 1mbps individual
    Each will get 512

    #Now 4 rules for 4 users
    1 user each firewall rule.
    each will get 1MBPS

    Example for Shared concept:

    #4 users
    1 firewall rule
    1QOS 1mbps Shared

    #Same for 2 firewall rules
    2 users each rule total of 4 users
    1QOS 1mbps shared
    Each will get 256

    #Now 4 rules for 4 users
    1 user each firewall rule.
    each will get 256

    Individual - multiplying factor
    Shared - Within that QOS range
    ex : 1mbps

    Thanks & Regards,
    _______________________________________________________________

    Vivek Jagad | Technical Account Manager 3 | Cyber Security Evolved


    Sophos Community | Product Documentation | Sophos Techvids | SMS
    If a post solves your question please use the 'Verify Answer' button.

Children