ScreenOS Firewalls (NOT SRX)
Highlighted
ScreenOS Firewalls (NOT SRX)

policy traffic shaping not working

[ Edited ]
‎07-05-2018 12:31 AM

I want to slow down the connection to youtube.com by using policy traffic shaping from Untrust to Trust zone. 

What I set:

 

From Untrust 172.217.194.136/32 (youtube) to Trust any gbw 512 policy bandwidth 512   - webUI

logging enabled, but i don see any traffice logged and access to youtube still like normal.

Traffic Shaping mode is Auto.

 

Did i missing something?

 

2 REPLIES 2
Highlighted
ScreenOS Firewalls (NOT SRX)

Re: policy traffic shaping not working

‎07-05-2018 12:39 AM

You have the policy in the wrong direction.  Also, GBW means that you are reserving 512k for Youtube.

Highlighted
ScreenOS Firewalls (NOT SRX)

Re: policy traffic shaping not working

‎07-05-2018 12:44 AM

Hello,

Youtube has many addresses and they change depending on who You ask :-). Here is an example from where I am:

C:\WINDOWS\system32>nslookup www.youtube.com. 8.8.8.8
Server:  google-public-dns-a.google.com
Address:  8.8.8.8

Non-authoritative answer:
Name:    youtube-ui.l.google.com
Addresses:  2a00:1450:400e:809::200e
          172.217.17.46
          172.217.17.78
          172.217.19.206
          172.217.20.110
          216.58.212.142
          172.217.17.110
          172.217.17.142
          216.58.211.110
          172.217.20.78
          216.58.212.206
Aliases:  www.youtube.com

From another public DNS:

C:\WINDOWS\system32>nslookup www.youtube.com. 4.2.2.2
Server:  b.resolvers.Level3.net
Address:  4.2.2.2

Non-authoritative answer:
Name:    youtube-ui.l.google.com
Addresses:  2a00:1450:4005:800::200e
          216.58.213.238
          172.217.16.78
          216.58.213.206
          172.217.19.78
Aliases:  www.youtube.com

HTH

Thx

Alex

_____________________________________________________________________

Please ask Your Juniper account team about Juniper Professional Services offerings.
Juniper PS can design, test & build the network/part of the network as per Your requirements

+++++++++++++++++++++++++++++++++++++++++++++

Accept as Solution = cool !
Accept as Solution+Kudo = You are a Star !
Feedback