Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Traffic Shaping for Juniper Network Connect Client?

    Scheduled Pinned Locked Moved Traffic Shaping
    4 Posts 3 Posters 1.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • W
      WANGOOROO
      last edited by

      Hello,

      I am running pfSense 2.0.3 on a Netgate ALIX device.  Cannot upgrade to pfSense 2.1 yet, but I intend to do so in later November 2013 when Netgate ALIX upgrade path shows an upgrade is available.  Currently I am on the latest "supported" release for netgate.

      I am running Windows 7 64 bit, and I use Juniper Network Connect VPN client to access my corporate network from home.  This VPN is required for my employer's Cisco IP Communicator soft phone client.

      Since all VOIP client traffic is internal to the Juniper Network Connect Client connection I assume that I would have some benefit if I were to do some traffic shaping to give the Juniper client traffic priority?  I don't think I need to prioritize VOIP packets themselves as they would be stuffed into the Juniper stream correct?

      If so, could anyone please share how to configure traffic shaping on pfSense to give highest priority to my Juniper VPN?

      I have searched the forums but have not found any information that is helpful.

      Thank you in advance for any assistance provided.  :)

      -chris

      1 Reply Last reply Reply Quote 0
      • P
        podilarius
        last edited by

        I don't know this VPN product, but I wanted to take a stab at this.
        I assume it works on a particular port. Once you setup shaping, you can go to Firewall -> Rules -> Floating. Create a new rule similar to the ones you put in high priority. You could also create a new queue with the highest QOS and use that in a new floating rule.

        1 Reply Last reply Reply Quote 0
        • D
          dreamslacker
          last edited by

          Since you are connecting via VPN, the easiest method would be to prioritize connections made from your computer's LAN IP as source to your employer's external IP.  If you are able to verify the exact VPN type (IPSEC or SSL) then you can further narrow down the scope of the rule using protocol and ports.

          1 Reply Last reply Reply Quote 0
          • P
            podilarius
            last edited by

            Sorry, I didn't clarify. I did mean for you to shape the VPN itself and not the traffic going into the tunnel.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.