This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Monitoring bandwidth usage of IPsec vpn-utm9

Hello Everyone,

 

Could someone help me on how to monitor the bandwidth usage of site-site ipsec vpn.  Defined guarantied bandwidth of 7mbps for all outbound traffic to remote site Network.Want to make sure allocated bandwidth is available for ipsec. How can i monitor the same?

Below are the bandwidth pool config.

traffic selector

Name  - inbound_ipsec

source - Local Network

Service - Any

Dest     - Remote Network

 

Bandwidth pool

Bandwidth    -7168

specify upper bandwidth limit- 7168

traffic selector- inbound_ipsec

 

 

Thank you very much

Sanil



This thread was automatically locked due to age.
Parents
  • Hi Sanil and welcome to thee UTM Community!

    It's just a detail, but shouldn't your Traffic Selector be named "Outbound IPsec" instead?  In any case, I would do:

    Outbound IPsec = Any -> IPsec -> {public IP of the other site}

    The Bandwidth Pool probably shouldn't have an Upper Limit assigned and it must be on your External interface.

    If you're still having a problem, please show us pictures of the Edits of the Bandwidth Pool, Traffic Selector and the External interface on the 'Status' tab.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • Hey Bob-  Thank you very much.

     

    As you said traffic selector name is a Typing error, it is "outbound" only.

    As suggested, I am adding some screenshots of config of both sides. I left the Upper bandwidth limit at external interface as default which is 1024 mbps because i don't want to limit my entire available width.

    my concern is, how we can make sure this bandwidth pool is working and allocated bandwidth is available for IPSec?

     

    Site-A (Initiator) (There is an option to specify upper bandwidth for bandwidth pool).

     

     

    Site -B (Respond)

     

     

     

    Thanks - Sanil

Reply
  • Hey Bob-  Thank you very much.

     

    As you said traffic selector name is a Typing error, it is "outbound" only.

    As suggested, I am adding some screenshots of config of both sides. I left the Upper bandwidth limit at external interface as default which is 1024 mbps because i don't want to limit my entire available width.

    my concern is, how we can make sure this bandwidth pool is working and allocated bandwidth is available for IPSec?

     

    Site-A (Initiator) (There is an option to specify upper bandwidth for bandwidth pool).

     

     

    Site -B (Respond)

     

     

     

    Thanks - Sanil

Children