Quick Reference Guide
ProSafe Dual WAN Gigabit Firewall with SSL & IPsec VPN FVS336G Reference Manual
4-22 Firewall Protection and Content Filtering
v1.0, January 2010
The QoS priority definition for a service determines the queue that is used for the traffic passing
through the VPN firewall. A priority is assigned to IP packets using this service. Priorities are
defined by the “Type of Service (ToS) in the Internet Protocol Suite” standards, RFC 1349. A ToS
priority for traffic passing through the VPN firewall is one of the following:
• Normal-Service. No special priority given to the traffic. The IP packets for services with this
priority are marked with a ToS value of 0.
• Minimize-Cost. Used when the data must be transferred over a link that has a low
transmission cost. The IP packets for this service priority are marked with a ToS value of 1.
• Maximize-Reliability. Used when data needs to travel to the destination over a reliable link
with little or no retransmission. The IP packets for this service priority are marked with a ToS
value of 2.
• Maximize-Throughput. Used when the volume of data transferred during an interval is
important even if the latency over the link is high. The IP packets for services with this priority
are marked with a ToS value of 4.
• Minimize-Delay. Used when the time required for the packet to reach the destination must be
short (low link latency). The IP packets for this service priority are marked with a ToS value
of 8.
Creating Bandwidth Profiles
To prevent one user or group from using excessive inbound or outbound bandwidth, you can
define a bandwidth profile to set a minimum and maximum bandwidth for an individual or group.
You can apply a defined profile in a firewall rule to limit specific protocols or all traffic (see
“Using Rules to Block or Allow Specific Kinds of Traffic” on page 4-2).
To create a bandwidth profile:
1. Select Security > Bandwidth Profile from the menu. The Bandwidth Profile screen is
displayed.
Figure 4-13