Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 3 subscribers
  • Views 2435 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos UTM SSL VPN QOS limited Bandwith

Philip Glittenberg

Hello,

 

at the moment there is a high SSL VPn usage caused by the Homeoffice users. Now I want to ask if there is a possibility to throttle the Bandwith for those connections to spare our WAN Connection Bandwith. Is it possible to do this via QoS? And how does it work? SSL VPN POOL => ANY => INTERNAL or ANY=>ANY=>EXTERNAL IP? And the second question is if it is possible to monitor the current Bandwith usage through SSL VPN Connections?

 

 

Best Regards

Philip



This thread was automatically locked due to age.
Parents
  • FormerMember
    0 FormerMember

    Hi  

    What is the tunnel mode for your SSL Remote VPN? Is it full tunnel or split tunnel? 

    Are you trying to block SSL VPN user from accessing the internet from the UTM? If yes, you would need to configure split tunnel. 

    I would also advise you to review this KB Article for QoS : Sophos UTM: Using QoS

    Thanks,

  • 0 in reply to FormerMember

    Good Morning H_Patel,

    thanks for your reply,

    at the moment it is split tunnel. We just use the vpn connections to access the local network. The Internet connections are not routed through VPN.

     

    We don't want to block a connection. We just want to be sure that all of the SSL VPN Connections are not using more than a specified amount of our internet bandwidth of 100 Mbit/s to grant the functionality of the services for the users who are working in the main office.

     

    Best Regards

    Philip

  • FormerMember
    0 FormerMember in reply to Philip Glittenberg

    Hi  

    In that case, you have to create Traffic Selector rule with source network as SSL VPN subnet and configure Bandwidth Pool for SSL VPN network. 

    Please review the KB Article provided in the previous reply and let us know if you have any questions. 

    Thanks,

  • 0 in reply to Philip Glittenberg

    Hallo Philip and welcome to the UTM Community!

    Learning to craft effective QoS rules is not easy.   Please be more specific about the traffic you want to limit to 100Mbps - traffic from the remote clients or the responses to them?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0 in reply to Philip Glittenberg

    Hallo Philip and welcome to the UTM Community!

    Learning to craft effective QoS rules is not easy.   Please be more specific about the traffic you want to limit to 100Mbps - traffic from the remote clients or the responses to them?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Unfiltered HTML