It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda CloudGen Firewall

This Firmware Version Is End-Of-Support

Documentation for this product is no longer updated. Please see End-of-Support for CloudGen Firewall Firmware for further information on our EoS policy.

Example - Simple Traffic Prioritization

  • Last updated on

For this example, traffic must be classified into three types, according to source IP address and network service. The types should be prioritized with a ratio of 5:2:1 (C1 : C2 : C3).

ti_simple_traffic_prio.png

For this example, you must configure the following:

  1. virtual tree consisting of a single virtual interface with a partition priority of 5:2:1.
  2. Three QoS bands that point to the root node. One QoS band results in a high priority, one in a medium priority, and one in a low priority.
  3. A firewall ruleset that consists of three rules, each referring to one of the three QoS Bands.
  4. A physical network device to which network traffic is delivered with the virtual tree attached to it.

With this configuration: 

  • The configured total for inbound and outbound bandwidth is never exceeded.
  • The three types of network traffic (low, medium, and high) share the bandwidth. If all three types of traffic are not in operation, the total bandwidth is divided amongst the available traffic according to the partition priority. If the preset bandwidth limit is not reached, traffic shaping does not occur and there is no prioritization.

    Prioritization only occurs when the available bandwidth is insufficient.

  • Because all three types of traffic operate on the same limiting unit datagram and share the same datagram queue, the delivery latency of a specific traffic type is highly dependent on the amount of traffic of the other types.

  • The configured priority partition is an estimated ratio. As more network traffic is sent, the closely the actual ratio matches this estimate.