Network and System Management
435
ProSecure Unified Threat Management (UTM) Appliance
Configure Exposed Hosts
Specifying an exposed host allows you to set up a computer or server that is available to
anyone on the Internet for services that you have not yet defined. For an example of how to
set up an exposed host, see LAN WAN or DMZ WAN Inbound Rule: Specify an Exposed
Host on page 152.
Configure VPN Tunnels
The UTM supports site-to-site IPSec VPN tunnels and dedicated SSL VPN tunnels. Each
tunnel requires extensive processing for encryption and authentication, thereby increasing
traffic through the WAN ports.
For information about IPSec VPN tunnels, see Chapter 7, Virtual Private Networking
Using IPSec, PPTP, or L2TP Connections. For information about SSL VPN tunnels, see
Chapter 8, Virtual Private Networking Using SSL Connections.
Use QoS and Bandwidth Assignments to Shift the Traffic Mix
By specifying QoS and bandwidth profiles and assigning these profiles to outbound and
inbound firewall rules, you can shift the traffic mix to aim for optimum performance of the
UTM.
Assign QoS Profiles
The QoS profile settings determine the priority and, in turn, the quality of service for the traffic
passing through the UTM. After you have created a QoS profile, you can assign the QoS
profile to firewall rules. The QoS is set individually for each service. You can change the mix
of traffic through the WAN ports by granting some services a higher priority than others:
• You can accept the default priority defined by the service itself by not changing its QoS
setting.
• You can change the priority to a higher or lower value than its default setting to give the
service higher or lower priority than it otherwise would have.
For more information about QoS profiles, see Create Quality of Service Profiles on page 169.
Assign Bandwidth Profiles
When you apply a QoS profile, the WAN bandwidth does not change. You change the WAN
bandwidth that is assigned to a service or application by applying a bandwidth profile. The
purpose of bandwidth profiles is to provide a method for allocating and limiting traffic, thus
allocating LAN users sufficient bandwidth while preventing them from consuming all the
bandwidth on your WAN links.
For more information about bandwidth profiles, see Create Bandwidth Profiles on page 171.