Filter
Top Products
Chapter 32 Application Patrol
ZyWALL USG 300 User’s Guide
554
• FTP traffic from the LAN to the DMZ can use more bandwidth since the
interfaces support up to 1 Gbps connections, but it must be the lowest priority
and limited so it does not interfere with SIP and HTTP traffic.
Figure 409 Application Patrol Bandwidth Management Example
32.1.3.1 Setting the Interface’s Bandwidth
Use the interface screens to set the WAN zone interface’s upstream bandwidth to
be equal to (or slightly less than) what the connected device can support. This
example uses 1000 Kbps.
32.1.3.2 SIP Any to WAN Bandwidth Management Example
• Manage SIP traffic going to the WAN zone from a VIP user on the LAN or DMZ.
• Outbound traffic (to the WAN from the LAN and DMZ) is limited to 200 kbps. The
ZyWALL applies this limit before sending the traffic to the WAN.
• Inbound traffic (to the LAN and DMZ from the WAN) is also limited to 200 kbps.
The ZyWALL applies this limit before sending the traffic to LAN or DMZ.
• Highest priority (1). Set policies for other applications to lower priorities so the
SIP traffic always gets the best treatment.
ADSL
Up: 1 Mbps
Down 8 Mbps
SIP: Any to WAN
Outbound: 200 Kbps
Inbound: 200 Kbps
Priority: 1
Max. B. U.
HTTP: Any to WAN
Outbound: 100 Kbps
Inbound: 500 Kbps
Priority: 2
Max. B. U.
FTP: WAN to DMZ
Outbound: 100 Kbps
Inbound: 300 Kbps
Priority: 3
No Max. B. U.
SIP: WAN to Any
Outbound: 200 Kbps
Inbound: 200 Kbps
Priority: 1
Max. B. U.
FTP: LAN to DMZ
Outbound: 50 Mbps
Inbound: 50 Mbps
Priority: 4
No Max. B. U.