Traffic Shapper Src and Dst IP

Forum|Forum|9 months ago
August 25, 2025
3 replies
771 views

I was configure traffic shaper policy for limit internet speed from lan to the internet, the policy name is 'pc_to_internet'.

Policy 'pc_to_internet' is working normally and for source i use my LAN address.

Screenshot 2025-08-25 112633.png

But i have another shaper policy to limit speed from the ipsec vpn site to site (1st row).

When i set source using my LAN address (same with policy pc_to_internet) then i try to copy file from another site2 then the speed is not limited. But if i change the source to site2 address and destination to my LAN address then the speed is imited.

Anyone can help me to understand why src and dst is different to limit bandwidh to the internet and to the another site using vpn site2site?

FortiGate

AEK

SuperUser

When you set source=LAN and dest=Site2_Addr, do you set source_intf=Local_VLANs and dest_intf=Tunnel?

AEK

HS08Author

Visitor III

If you see below when i set src to LAN, dst to site2 address, src intf to my VLAN and dst intf to the sdwan then the policy is not work (the bandwidth is 2.17kbps)

Screenshot 2025-08-25 145628.png