Enabling Untangle QoS

From UntangleWiki

All QoS Topics | All Networking Topics | Untangle Server User's Guide

Untangle QoS provides many default rules:

(Non-editable) Ping, TCP ACK and Gaming. You cannot edit these default rules because they're either lower-level protocols, or they comprise numerous subrules that Untangle pre-configured to save you time. You can, however, set the priority for these non-editable default rules.
(Editable) VoIP (SIP), VoIP (IAX), DNS, and SSH. You can edit these default rules.

Note: As you optimize for protocols, you become more vulnerable to denial-of-service attacks. Untangle Server's Attack Blocker protects you against such threats while still enabling you the Quality of Service that you desire. Attack Blocker protects against ack (or SYN) flooding and ping-of-death attacks.

To enable QoS:

From the Navigation pane, choose Config > QoS.
Specify your Internet connection speeds and priorities for non-editable default rules.

Enabled If selected, enables Untangle QoS. Enabling each individual default rule does not automatically enable Untangle QoS.

Internet Download Bandwidth Your Internet connection's maximum download speed as set by your ISP. If you don't know the speed, use Speakeasy's Speed Test tool.

Limit Download to Untangle Server automatically suggests a download limit; however, you can adjust the recommended settings. Best practice is to use a download speed that's 80-90% of your actual download speed.

Internet Upload Bandwidth Your Internet connection's maximum upload speed as set by your ISP. If you don't know the speed, use Speakeasy's Speed Test tool.

Limit Upload to Untangle Server automatically suggests a upload limit; however, you can adjust the recommended settings. Best practice is to use a download speed that's 90-95% of your actual upload speed.

Ping Priority Default rule for ICMP protocol of Ping requests. By default, the rule is set to Normal.

ACK Priority Default rule for ACK (TCP) provides acknowledgments of downloaded packets. This rule speeds up downloads when upload bandwidth is saturated.
Acknowledgments are uploads. If you were talking with someone over VoIP, for example, you want VoIP packets that you download to be acknowledged as quickly as possible so there is no delay in your conversation. You want these acknowledgments to be given high priority because they're time sensitive. In short, speeding up acknowledgments makes for a better VoIP experience. So, by default, the rule is set to High.

Gaming Priority Default rule consists of rules for PS3, Wii, XBox Live, and Microsoft DirectX gaming protocols. By default, the rule is set to Normal.

Do one of the following:

For each of the default rules that you want to enable, select the On check box, then choose a Priority.
Click the Add button to add a new rule or to change the filter conditions for the editable default rules.

You can filter based on any of the following conditions:

Destination Address Destination IP address of the traffic if the traffic is not redirected. You indicate a wildcard by not specifying the value. To learn about IP address syntax, go to Networking and Web Address Syntax.

Destined Local The traffic is destined to any of the Untangle Server's IPs.

Destination Port Original destination port of the traffic. To learn about port syntax, go to Networking and Web Address Syntax.

Protocol Network protocol of the traffic. Use UDP on SIP port to improve VoIP. SIP is an application protocol that establishes VoIP sessions between caller and sender. This filter is the most common..

Source Address Source IP address of the traffic. Use when one computer is less important than all others. Perhaps you have a system that guests use to browse the Internet while they're waiting in the lobby. Perhaps a subnet is less important. Use CIDR notation for this field, to learn about IP address syntax, go to Networking and Web Address Syntax. Bypassed traffic only

Source Interface Interface from which the Untangle Server receives traffic. Valid values are External, Internal, DMZ, eth3-6. For information about the Untangle Server's network interfaces, see the discussion in Network Interfaces. Bypassed traffic only

Source Port Source Port number of traffic bound outward from the external interface. For example use Source Port 80 to adjust the priority of a webserver. Bypassed traffic only

Figure, Creating QoS Rules

Click Save.

Note: Another way to speed up your network performance is to bypass Untangle's filtering of selected traffic. To do this, create a bypass rule for the condition on which you want to filter traffic to pass straight through. Go to Creating User Bypass Rules.

Retrieved from "http://wiki.untangle.com/index.php/Enabling_Untangle_QoS"

Enabling Untangle QoS

From UntangleWiki

Views

Navigation

Search

Toolbox

Enabled	If selected, enables Untangle QoS. Enabling each individual default rule does not automatically enable Untangle QoS.
Internet Download Bandwidth	Your Internet connection's maximum download speed as set by your ISP. If you don't know the speed, use Speakeasy's Speed Test tool.
Limit Download to	Untangle Server automatically suggests a download limit; however, you can adjust the recommended settings. Best practice is to use a download speed that's 80-90% of your actual download speed.
Internet Upload Bandwidth	Your Internet connection's maximum upload speed as set by your ISP. If you don't know the speed, use Speakeasy's Speed Test tool.
Limit Upload to	Untangle Server automatically suggests a upload limit; however, you can adjust the recommended settings. Best practice is to use a download speed that's 90-95% of your actual upload speed.
Ping Priority	Default rule for ICMP protocol of Ping requests. By default, the rule is set to `Normal`.
ACK Priority	Default rule for ACK (TCP) provides acknowledgments of downloaded packets. This rule speeds up downloads when upload bandwidth is saturated. Acknowledgments are uploads. If you were talking with someone over VoIP, for example, you want VoIP packets that you download to be acknowledged as quickly as possible so there is no delay in your conversation. You want these acknowledgments to be given high priority because they're time sensitive. In short, speeding up acknowledgments makes for a better VoIP experience. So, by default, the rule is set to `High`.
Gaming Priority	Default rule consists of rules for PS3, Wii, XBox Live, and Microsoft DirectX gaming protocols. By default, the rule is set to `Normal`.

Destination Address	Destination IP address of the traffic if the traffic is not redirected. You indicate a wildcard by not specifying the value. To learn about IP address syntax, go to Networking and Web Address Syntax.
Destined Local	The traffic is destined to any of the Untangle Server's IPs.
Destination Port	Original destination port of the traffic. To learn about port syntax, go to Networking and Web Address Syntax.
Protocol	Network protocol of the traffic. Use UDP on SIP port to improve VoIP. SIP is an application protocol that establishes VoIP sessions between caller and sender. This filter is the most common..
Source Address	Source IP address of the traffic. Use when one computer is less important than all others. Perhaps you have a system that guests use to browse the Internet while they're waiting in the lobby. Perhaps a subnet is less important. Use CIDR notation for this field, to learn about IP address syntax, go to Networking and Web Address Syntax.	Bypassed traffic only
Source Interface	Interface from which the Untangle Server receives traffic. Valid values are External, Internal, DMZ, eth3-6. For information about the Untangle Server's network interfaces, see the discussion in Network Interfaces.	Bypassed traffic only
Source Port	Source Port number of traffic bound outward from the external interface. For example use Source Port 80 to adjust the priority of a webserver.	Bypassed traffic only

Personal tools

Enabling Untangle QoS

From UntangleWiki

Views

Navigation

Search

Toolbox