Hi @UdaM ,

You're essentially looking to implement a rate-based upload control policy. To achieve this, you can refer to the following resources:

• Rate Limiting Access to a Website or Application:

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Rate-limiting-access-to-the-website-or-app...

https://docs.fortinet.com/document/fortigate/7.6.2/administration-guide/419589/ips-configuration-opt...

• Creating a Custom IPS Signature for Upload Control:

https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-configure-custom-IPS-signature-for-...

https://docs.fortinet.com/document/fortigate/7.2.0/secgw-for-mobile-networks-deployment/906137/custo....

These articles will guide you through setting up rate limiting and defining custom IPS signatures to help control and monitor upload behavior effectively.

NOTE: Based on my research, the type of restriction you've requested cannot be implemented directly based on bandwidth using the standard IPS or application control methods. However, you can achieve a similar result through an alternative approach by creating a custom traffic shaping policy. Specifically, you can configure a traffic shaper to limit traffic to 25 Mbps, applying it based on source or destination criteria. This approach provides the control you're looking for, but through bandwidth allocation rather than rate-limiting at the IPS level. For detailed guidance, please refer to the following documentation:

https://docs.fortinet.com/document/fortigate/7.6.2/administration-guide/297431/traffic-shaping

BR.

If my answer provided a solution for you, please mark the reply as solved it so that others can get it easily while searching for similar scenarios.

CCIE #68781

Thank you @Tauri and @atakannatak for your feedback. ill test and update the status. 

Regards

UdaM