Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
sfrati
Staff
Staff

Created on ‎10-17-2025 06:28 AM

Article Id 413134

Technical Tip: NP7 versus NP6 platforms and their respective allowed shaping modes

Description In latest releases, shaping is NOT advised/available anymore for default_qos_type on NP7 platforms.
The changes described in this article have been implemented in FortiOS versions 7.2.11, 7.4.8, and 7.6.1.
What is available on NP6 platforms ?.
Scope NP6 platforms.
Solution

QTM was introduced from NP7 model, NP6/NP6lite/NP6xlite uses TPE module for traffic shaping/shaping profile/class-id.
Queuing-Based Traffic Management (QTM) is generally not supported on FortiGates utilizing the NP6 network processor.
QTM is a feature specifically associated with the newer NP7 and NP7Lite (SOC5) network processors.

Feature

 NP6 Processor (Older) NP7 / NP7Lite Processor (Newer)
Traffic Shaping Method

Traffic Policy Engine (TPE) Shaper

 Queuing-based Traffic Management (QTM) Shaper
Mechanism Policing (CLI 'policing') Queuing (CLI 'shaping')
Behavior Drops packets instantly when the configured bandwidth limit is exceeded. It is less effective with bursty traffic. Puts packets into queues when the limit is exceeded and delays them for transport until bandwidth frees up.
This is to be more stable and performs better with bursty traffic.
CLI Setting The QoS mode is limited to policing behavior.

Up to latest releases, the administrator could choose between policing (policing) or shaping (shaping) with QTM:

 

config system npu 
set default-qos-type [policing | shaping]

 

In latest releases, shaping is NOT available anymore on NP7 platforms: the 'shaping' option has been deleted from default-qos-type, so only policing can be selected. The changes have been implemented in FortiOS versions 7.2.11, 7.4.8, and 7.6.1.

 

In case of an NP6 platform FortiGate device, the hardware acceleration for traffic shaping will mandatory use the Policing method, which is the TPE Shaper.

When using an NP7 platform FortiGate device, use the following command to check the current config:

 

diagnose npu np7 system-con 
…snip…
default_qos_type : policing (0)   <----- TPE engine in use : advised
default_qos_type : shaping (1)    <----- QTM engine in use
…snip…

 

Note: Changing qos-type requires a reboot.

 

Related articles:
143
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.