1. Home
    2. /
  2. Manuals
    3. /
  3. NETGEAR
    4. /
  4. SRX5308
    5. /
  5. 16
Page 76 / 469 Scroll up to view Page 71 - 75
IPv4 and IPv6 Internet and WAN Settings
76
ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308
WARNING:
Depending on the changes that you made, when you click Apply,
the VPN firewall might restart, or services such as HTTP and
SMTP might restart.
If you want to configure the advanced settings for an additional WAN interface, select
another WAN interface and repeat these steps.
Configure WAN QoS Profiles
The VPN firewall can support multiple Quality of Service (QoS) profiles for each WAN
interface. You can assign profiles to services such as HTTP, FTP, and DNS and to LAN
groups or IP addresses. Profiles enforce either rate control with bandwidth allocation or
priority queue control. You can configure both types of profiles, but either all profiles on the
VPN firewall enforce rate control and the profiles that you configured for priority queue control
are inactive, or the other way around. Both types of profiles cannot be active simultaneously.
Rate control with bandwidth allocation
. These types of profiles specify how bandwidth
is distributed among the services and hosts. A profile with a high priority is offered excess
bandwidth while the required bandwidth is still allocated to profiles that specify minimum
and maximum bandwidth rates. The congestion priority represents the classification level
of the packets among the priority queues within the system. If you select a default
congestion priority, traffic is mapped based on the Type of Service (ToS) field in the
packet’s IP header.
Priority queue control
. These types of profiles specify the priority levels of the services.
You can select a high-priority queue or a low-priority queue. Services in the high-priority
queue share 60 percent of the interface bandwidth; services in the low-priority queue
share 10 percent of the interface bandwidth. By default, all services are assigned the
medium-priority queue in which they share 30 percent of the interface bandwidth.
Both types of profiles let you allocate the Differentiated Services (DiffServ) QoS packet
matching and QoS packet marking settings, which you configure by specifying Differentiated
Services Code Point (DSCP) values, from 0 to 63.
Note:
Before you enable WAN QoS, make sure that the WAN connection
type and speeds are configured correctly in the Upload/Download
Settings section of the WAN Advanced Options screen for the WAN
interface (see
Configure Advanced WAN Options and Other Tasks
on page
71).
Page 77 / 469
IPv4 and IPv6 Internet and WAN Settings
77
ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308
Note:
To configure and apply QoS profiles successfully, familiarity with
QoS concepts such QoS priority queues, IP precedence, DHCP, and
their values is helpful.
To enable and configure QoS for the WAN interfaces:
1.
Select
Network Configuration > QoS
. The QoS screen displays. (The following screen
shows some profiles in the List of QoS Profiles table).
Figure 47.
2.
To enable QoS, select the
Yes
radio button. By default, the No radio button is selected.
3.
Specify the profile type that should be active by selecting one of the following radio buttons:
Rate control
. All rate control QoS profiles that you configure are active, but priority
QoS profiles are not.
Priority
. All priority QoS profiles that you configure are active, but rate control QoS
profiles are not.
4.
Click
Apply
to save your settings.
The List of QoS Profiles table shows the following columns, all of which are described in
detail in the following table and
Table
15
on page
80.
QoS Type
. The type of profile, either Rate Control or Priority.
Interface Name
. The WAN interface to which the profile applies (WAN1, WAN2,
WAN3, or WAN4).
Service
. The service to which the profile applies.
Direction
. The WAN direction to which the profile applies (inbound, outbound, or
both).
Rate
. The bandwidth rate in Kbps, or the priority.
Page 78 / 469
IPv4 and IPv6 Internet and WAN Settings
78
ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308
Hosts
. The IP address, IP addresses, or group to which the rate control profile
applies. (The information in this column does not apply to priority profiles).
Action
. The Edit table button provides access to the Edit QoS screen for the
corresponding profile.
To add a rate control QoS profile:
1.
Select
Network Configuration > QoS
. The QoS screen displays.
2.
Under the List of QoS Profiles table, click the
Add
table button. The Add QoS screen
displays. The following figure shows settings for a rate control QoS profile:
Figure 48.
3.
Enter the settings as described in the following table:
Table 14.
Add QoS screen settings for a rate control profile
Setting
Description
QoS Type
Rate Control (for Priority, see
Figure
49
on page
80 and
Table
15
on page
80).
Interface
From the drop-down list, select one of the WAN interfaces.
Service
From the drop-down list, select a service or application to be covered by this
profile. If the service or application does not appear in the list, you need to
define it using the Services screen (see
Add Customized Services
on
page
177).
Direction
From the drop-down list, select the direction to which rate control is applied:
Inbound Traffic
. Rate control is applied to inbound traffic only.
Outbound Traffic
. Rate control is applied to outbound traffic only.
Both
. Rate control is applied to both outbound and inbound traffic.
Page 79 / 469
IPv4 and IPv6 Internet and WAN Settings
79
ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308
Diffserv QoS Match
Enter a DSCP value in the range of 0 through 63. Packets are classified against
this value. Leave this field blank to disable packet matching.
Congestion Priority
From the drop-down list, select the priority queue that determines the allocation
of excess bandwidth and the classification level of the packets among other
priority queues on the VPN firewall:
Default
. Traffic is mapped based on the ToS field in the packet’s IP header.
High
. This queue includes the following DSCP values: AF41, AF42, AF43,
AF44, and CS4.
Medium-high
. This queue includes the following DSCP values: AF31,
AF32, AF33, AF34, and CS3.
Medium
. This queue includes the following DSCP values: AF21, AF22,
AF23, AF24, and CS2.
Low
. This queue includes the following DSCP values: AF11, AF12, AF13,
AF14, CS1, 0, and all other values.
Hosts
From the drop-down list, select the IP address, range of IP addresses, or group
to which the profile is applied:
Single IP Address
. The profile is applied to a single IP address. Enter the
address in the Start IP field.
IP Address Range
. The profile is applied to an IP address range. Enter the
start address of the range in the Start IP field and the end address of the
range in the End IP field, and specify how the bandwidth is allocated by
making a selection from the Bandwidth Allocation drop-down list.
Group
. The profile is applied to a group. Select the group from the Select
Group drop-down list, and specify how the bandwidth is allocated by
making a selection from the Bandwidth Allocation drop-down list.
Start IP
The IP address for a single IP address or the start IP
address for an IP address range.
End IP
The end IP address for an IP address range.
Select Group
From the drop-down list, select the LAN group to which
the profile is applied. For information about LAN groups,
see
Manage IPv4 Groups and Hosts (IPv4 LAN Groups)
on page
96.
Bandwidth Allocation
From the drop-down list, specify how the bandwidth is
allocated:
Shared
. The bandwidth is shared among all IP
addresses in a range or all members of a group.
Individual
. The bandwidth is allocated to each IP
address in the range or each member of a group.
Outbound Minimum
Bandwidth
Enter the outbound minimum bandwidth in Kbps that is allocated to the host.
Outbound Maximum
Bandwidth
Enter the outbound maximum bandwidth in Kbps that is allocated to the host.
Inbound Minimum
Bandwidth
Enter the inbound minimum bandwidth in Kbps that is allocated to the host.
Table 14.
Add QoS screen settings for a rate control profile (continued)
Setting
Description
Page 80 / 469
IPv4 and IPv6 Internet and WAN Settings
80
ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308
4.
Click
Apply
to save your settings. The profile is added to the List of QoS Profiles table on
the QoS screen.
To add a priority queue QoS profile:
1.
Select
Network Configuration > QoS
. The QoS screen displays.
2.
Under the List of QoS Profiles table, click the
Add
table button. The Add QoS screen
displays. The following figure shows settings for a priority QoS profile:
Figure 49.
3.
Enter the settings as described in the following table:
Inbound Maximum
Bandwidth
Enter the inbound maximum bandwidth in Kbps that is allocated to the host.
Diffserv QoS Remark
Enter a DSCP value in the range of 0 through 63. Packets are marked with this
value. Leave this field blank to disable packet marking.
Table 15.
Add QoS screen settings for a priority profile
Setting
Description
QoS Type
Priority (for Rate Control, see
Figure
48
on page
78 and
Table
14
on page
78).
Interface
From the drop-down list, select one of the WAN interfaces.
Table 14.
Add QoS screen settings for a rate control profile (continued)
Setting
Description

Rate

3.5 / 5 based on 2 votes.

Popular NETGEAR Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top