advertisement
| System | 478
Figure 440: Add Surfing Quota Policy
3. Click Save.
Network Traffic Quota
The device offers two types of controls to limit bandwidth usage:
• Network Traffic Quota allows you to specify the data transfer limit. Example: User X is limited to 10 GB data transfer in a week.
• Traffic Shaping Policy (Configure > System Services > Traffic Shaping) allows you to control the speed of data transfer. Example: User X receives guaranteed 1 Mbps bandwidth during work hours.
Use the network traffic quota policy to specify differing types and levels of data transfer controls. Data transfer limits can be cyclic or non-cyclic. These can be based on:
• Total Data transfer (Upload + Download)
• Individual limits for Upload and Download
The device is shipped with the following predefined policies:
• 100 MB Total Data Transfer policy
• Daily 10 MB
Predefined policies are available for immediate use. You can create custom policies to specify differing data transfer limits to different users and groups.
For the policy to take effect, you must apply the network traffic quota policy to users (Configure > Authentication >
Users) or groups (Configure > Authentication > Groups) . Users generally belong to a group. If the network traffic quota policy applied to the user differs from the one applied to the user’s group, the user’s policy takes priority.
Create a New Network Traffic Quota Policy
To control data transfer by users and groups, you can create network traffic quota policies. For the policy to take effect, you must then apply it to users (Configure > Authentication > Users) and groups (Configure >
Authentication > Groups).
You can create the following types of policies:
•
Total Network Traffic - Cyclic Policy
•
Total Network Traffic - Non-Cyclic Policy
•
Individual Network Traffic - Cyclic Policy
•
Individual Network Traffic - Non-Cyclic Policy
1. Go to System > Profiles > Network Traffic Quota and click Add on the upper right side.
2. Enter the details.
Name
Enter a unique name to identify the policy.
Description
Enter a description for the network traffic quota policy.
Restriction Based On
Click to select the restriction based on the following options:
Available Options:Total Network Traffic: Specifies a single limit for data upload and download.
Individual Network Traffic (Upload and Download): Specifies different limits for data upload and download.
Cycle Type
Click to select the cycle type.
Available Options:Cyclic: Data transfer quota resets to zero at the beginning of each cycle. The user receives the full quota for each cycle. Unused quota is not carried forward to the next cycle.
Non-Cyclic: When data transfer reaches the specified limit, the policy expires and the user is disconnected.
Note: To restart the user's Internet access, go to Configure > Authentication >
Users and
.
3. Based on the selection made in Restriction based on and Cycle Type, you can create any one of the following four types of policies: a) Policy 1: Total Network Traffic - Cyclic Policy
Cycle Period
Select the cycle period from the drop-down list. Cycle period specifies the duration of cyclic policies, that is, day, week, month and year.
Cycle Network Traffic
Specify the network traffic limit (in MB) per cycle. It specifies the data transfer allowed during each cycle to the user. When data transfer reaches the limit, the user is disconnected.
Maximum Network Traffic
By default, the check box is selected to Unlimited and no restriction is placed on the maximum data transfer for the duration of the policy. Clear the check box to specify the maximum data transfer (in
MB) allowed by the policy. When total data transfer reaches this limit, the user is disconnected.
Example: Cycle Period: Week
Cycle Network Traffic: 5 MB (5 MB data transfer is allocated to the user each week. The user is disconnected when this limit is reached during the week.)
Maximum Network Traffic: 10 MB (10 MB data transfer is allocated to the user for the duration of the policy. The user is disconnected when this limit is reached.)
| System | 479
Figure 441: Total Network Traffic - Cyclic Policy
b) Policy 2: Total Network Traffic - Non-Cyclic Policy
Maximum Network Traffic
By default, the check box is selected to Unlimited and no restriction is placed on the maximum data transfer for the duration of the policy. Clear the check box to specify the maximum data transfer (in
MB) allowed by the policy. When total data transfer reaches this limit, the user is disconnected.
Figure 442: Total Network Traffic - Non-Cyclic Policy
c) Policy 3: Individual Network Traffic - Cyclic Policy
Cycle Period
Select the cycle period from the drop-down list. Cycle period specifies the duration of cyclic policies, that is, day, week, month and year.
Cycle Upload Network Traffic
By default, the check box is selected to Unlimited and no restriction is placed on data upload during the cycle period. Clear the check box to specify the data upload limit (in MB) per cycle. The user cannot upload data once the cycle upload network traffic reaches the limit.
Cycle Download Network Traffic
| System | 480
By default, the check box is selected to Unlimited and no restriction is placed on data download during the cycle period. Clear the check box to specify the data download limit (in MB) per cycle.
The user cannot download data once the cycle download network traffic limit is reached.
Maximum Upload Network Traffic
By default, the check box is selected to Unlimited and no restriction is placed on data upload for the duration of the policy. Clear the check box to specify the maximum data upload allowed by the policy. The user cannot upload data once the upload network traffic limit is reached.
Example: Cycle Period: Week
Cycle Upload Network Traffic: 5 MB (5 MB data upload is allocated to the user each week. The user cannot upload data when this limit is reached during the week.)
Maximum Upload Network Traffic: 10 MB (10 MB data upload is allocated to the user for the duration of the policy. The user cannot upload data when this limit is reached.)
Maximum Download Network Traffic
By default, the check box is selected to Unlimited and no restriction is placed on data download for the duration of the policy. Clear the check box to specify the maximum data download allowed by the policy. The user cannot download data once the download network traffic limit is reached.
Example: Cycle Period: Week
Cycle Download Network Traffic: 5 MB (5 MB data download is allocated to the user each week.
The user cannot download data when this limit is reached during the week.)
Maximum Download Network Traffic: 10 MB (10 MB data download is allocated to the user for the duration of the policy. The user cannot download data when this limit is reached.)
| System | 481
Figure 443: Individual Network Traffic - Cyclic Policy
d) Policy 4: Individual Network Traffic - Non-Cyclic Policy
Maximum Upload Network Traffic
By default, the check box is selected to Unlimited and no restriction is placed on data upload for the duration of the policy. Clear the check box to specify the maximum data upload allowed by the policy. The user cannot upload data once the upload network traffic limit is reached.
Maximum Download Network Traffic
advertisement
Key Features
- Firewall rules
- Web filtering
- Intrusion prevention
- VPN
- Wireless management
- Email security
- Advanced threat protection
Related manuals
Frequently Answers and Questions
What is the purpose of Sophos XG Firewall?
What are the key features of Sophos XG Firewall?
How do I access the Sophos XG Firewall web interface?
How do I configure basic firewall rules?
How do I enable web filtering?
What is the difference between a user rule and a network rule?
How do I create a VPN tunnel?
advertisement