Chapter 28 Application Patrol
numbers for SIP traffic. Likewise, configuring the SIP ALG to use custom port numbers for SIP traffic also configures application patrol to use the same port numbers for SIP traffic.
DiffServ and DSCP Marking
QoS is used to prioritize
DiffServ (Differentiated Services) is a class of service (CoS) model that marks packets so that they receive specific
Use application patrol to set a DSCP value for an application’s traffic that the ZyWALL sends out.
Bandwidth Management
When you allow an application, you can restrict the bandwidth it uses or even the bandwidth that particular features in the application (like voice, video, or file sharing) use. This restriction may be ineffective in certain cases, however, such as using MSN to send files via P2P.
The application patrol bandwidth management is more flexible and powerful than the bandwidth management in policy routes. Application patrol controls TCP and UDP traffic. Use policy routes to manage other types of traffic (like ICMP).
Note: Bandwidth management in policy routes has priority over application patrol bandwidth management. It is recommended to use application patrol instead of policy routes to manage the bandwidth of TCP and UDP traffic.
Connection and Packet Directions
Application patrol looks at the connection direction, that is from which zone the connection was initiated and to which zone the connection is going.
A connection has outbound and inbound packet flows. The ZyWALL controls the bandwidth of traffic of each flow as it is going out through an interface or VPN tunnel.
| 439 |
ZyWALL USG 50 User’s Guide | |
|
|