
Explanation:
Fortigate: Traffic Shapers Configuration FortiOS 6.0.x.Traffic Shapers is in other words equal to QoS (Quality of service).
This is a service-quality model, prioritizing certain apps and services at the expense of other apps and services.
This model enables smart bandwidth management by optimizing and ensuring performance for the services that are important or require high availability.
A common use of this is to set up QoS for Voip calls, watch live video services, Skype calls and more.
Traffic Shapers will allow us to define important applications and services that are highly prioritized, and high bandwidth allocation, compared to other services to which we allocate low bandwidth while giving low priority.
Setup/configuration step via GUI and CLI.
1. Login to Fortigate then navigate to POLICY & Objects > Traffic Shapers
2. Click NEW to create a new traffic shaper.
3. There are 2 options we can select here, Per-IP or Shared ( depend on your requirement). For example, we want to create shared shaping for low priority with 1MB of maximum bandwidth and high priority with a minimum bandwidth of 2MB. After done, click OK to save it.
* we can select 3 options for priority – low, medium and high.
4. After finish setup our shaper, we need to create and apply it to Traffic shaping policy. Navigate to Policy & Objects -> Traffic Shaping Policy.
5. Create new to create a new policy then we can define our policy. ( Source, destination, URL, apps, outgoing internet if we have more then 1 and so on. See my example. I use my wwan ( LTE /backup link for low priority traffic ) and primary link for high priority.
6. Click OK to apply and save our setting.
For FortiGate CLI, we can see or setup like this:
Low:
config firewall shaper traffic-shaper
edit “Low Priority – Realitymaya.com”
set maximum-bandwidth 1024
set priority low
next
end
config firewall shaping-policy
edit 2
set internet-service enable
set internet-service-id 131184
set application 15832 15722
set app-category 23
set url-category 37
set dstintf “wwan”
set traffic-shaper “Low Priority – Realitymaya.com”
set srcaddr “LAN”
next
end
High :
config firewall shaper traffic-shaper
edit “High Priority – Realitymaya.com”
set guaranteed-bandwidth 2048
next
end
Now we already did setup our Shaping policy/rules. We can see traffic from Fortiview or the policy-shaper dashboard.
Thank you.