Solved

Can I configure a VPN on this firewall as having priority and would that improve performance in any noticeable fashion?

Posted on 2008-10-23
4
339 Views
Last Modified: 2010-04-21
Hi folks I currently have two Watchguard Firebox X Edge X55e's at my headquarters and branch set up with a VPN connection between the two.

In evaluating performance of moving files between the offices I've already decided that I want to throw some additional bandwidth at the HQ, but I was wondering can I configure these watchguards so that VPN traffic has the highest priority? Should I? Would there be any noticeable performance benefit? If the answer is yes, can anyone guide me generally through how to do this?
0
Comment
Question by:dallen369
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 32

Expert Comment

by:dpk_wal
ID: 22856518
You can configure X Edge series boxes for QoS but currently IPSec traffic does not use QoS marking. You can however configure traffic control for a VPN tunnel:
From the Edge navigation bar, select Network > Traffic Control

Please let know if you need more details.

Thank you.
0
 

Author Comment

by:dallen369
ID: 22856527
Yeah could you go a bit more indepth on this? I've seen that section and I figured that's where I would go but I'm unsure as to how to actually configure this section.
0
 
LVL 32

Accepted Solution

by:
dpk_wal earned 500 total points
ID: 22856906
Traffic control allows you to manage the amount of bandwidth, to implement:
1. From the Edge navigation bar, select Network > Traffic Control
2. Select Enable Traffic Control check box.
3. In the Upstream bandwidth limit text box, type the upstream bandwidth limit of your external network connection (WAN1). Enter a value from 19 Kbps to 100,000 Kbps. The default setting is 512 Kbps.
4. Select the Prioritization check box if you want to add filters to other network traffic categories.
5. To create filters for the interactive, high, medium, or low traffic categories, click the Add button adjacent to the category name. Choose a policy or VPN tunnel, then click Select. Hold down CTRL to select more than one at a time. To delete a filter, click Remove.
6. Traffic Control marking cannot be enabled for IPSec.
7. Click Submit.

Please check and update.

Thank you.
0
 

Author Closing Comment

by:dallen369
ID: 31509402
Thanks so much!
0

Featured Post

Now Available: Firebox Cloud for AWS and FireboxV

Firebox Cloud brings the protection of WatchGuard’s leading Firebox UTM appliances to public cloud environments. It enables organizations to extend their security perimeter to protect business-critical assets in Amazon Web Services (AWS).

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

In this tutorial I will show you with short command examples how to obtain a packet footprint of all traffic flowing thru your Juniper device running ScreenOS. I do not know the exact firmware requirement, but I think the fprofile command is availab…
We sought a budget ($5,000) firewall solution that would provide all the performance we needed with no single point of failure.  Hosting a SAAS web application in our datacenter, it was critical that we find a way to keep connectivity up and inbound…
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…
Finding and deleting duplicate (picture) files can be a time consuming task. My wife and I, our three kids and their families all share one dilemma: Managing our pictures. Between desktops, laptops, phones, tablets, and cameras; over the last decade…

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question