This is an example of using ZyWALL/USG Bandwidth Management (BWM) to control the bandwidth allocation for peer-to-peer traffic. You can use source interface, destination interface, destination port, schedule, user, source, destination information, DSCP code and service type as criteria to create a sequence of specific conditions to allocate bandwidth for the matching packets. When the BWM is configured, you can limit bandwidth consuming Application traffic, such as Peer-to-Peer (P2P) service.
Set Up the Application Patrol Profile on the ZyWALL/USG
1. In the ZyWALL/USG, go to CONFIGURATION > Object > Application > Add Application Rule. Configure a Name for you to identify the Application Profile. Then, click Add to create an Application Object.
2. In the Application Object, select By Service, type a keyword and click Search to display all signatures containing that keyword. Select all Query Result and Click OK.
Set Up the Bandwidth Management for BitTorrent on the ZyWALL/USG
1. In the ZyWALL/USG, go to CONFIGURATION > BWM > Configuration > Add Policy, select Enable and type BitTorrent Any-to-Any as the policy’s Description.
Leave the Incoming Interface to any and select the Outgoing Interface to be wan1. Select Service Type to be the Service Object and select BitTorrent from the list box.
Set the Guaranteed Bandwidth Inbound to 65 (kbps) and set Priority 5 (low-to-medium). Set the Maximum to 512(kbps). Set the Guaranteed Bandwidth Outbound to 65 (kbps) and set Priority 5. Set the Maximum to 512 (kbps). Click OK to return to the General screen.
Set Up the Bandwidth Management Global Setting on the ZyWALL/USG
1. In the ZyWALL/USG, go to CONFIGURATION > BWM > BWM Global Setting, select Enable.
Test the Result
1. Download BitTorrent application for testing the result: http://www.bittorrent.com/downloads
2. In this example, an 826 MB file is downloading, the Down Speed limited to maximum 65 kB/s.
3. Go to the ZyWALL/USG Monitor > Log, you will see [alert] log message such as below.
What Can Go Wrong?
1. If the “outbound” in the guaranteed bandwidth settings apply to traffic going from the connection initiator to the outgoing interface. “Inbound” refers to the reverse direction.
2. Make sure you have registered the Application Patrol service on the ZyWALL/USG to use Application Object as the Service Type in the bandwidth management rules.
You can click the link from the CONFIGURATION > Licensing > Registration screen of your ZyXEL device’s Web Configurator or click the myZyXEL.com 2.0 icon from the portal page (https://portal.myzyxel.com/) to register or extend your Application Patrol license.