Description | This article describes a solution to an issue where, after enabling traffic shaping on a FortiGate device running version 7.0.12, it becomes impossible to access the network. The resolution involves using a CLI command related to the npu system. |
Scope | FortiGate. |
Solution |
Problem: When enabling traffic shaping on a FortiGate device with system version 7.0.12, network access is lost.
Solution:
config system npu
Note: When modifying the default QoS type to policing, it leverages the TPE module. This means a restart of the FortiGate device is mandatory.
The 'set default-qos-type policing' command, when used within the FortiGate device's CLI, pertains to the way Quality of Service (QoS) is handled in the context of traffic management.
Command breakdown:
Below is a more detailed explanation of policing: Policing: Policing is a traffic management approach where traffic rates are monitored, and actions are taken on packets once they exceed the configured rate limits. The typical actions include:
Using policing effectively creates a 'hard ceiling' for traffic, ensuring that it does not exceed specified limits. However, one downside is that the immediate dropping of packets can lead to increased retransmissions and reduced application performance, depending on the nature of the traffic.
In the context of the FortiGate command provided (set default-qos-type policing), this would mean that the default behavior for handling QoS on the device would be to use the policing mechanism. It will be especially relevant when the device is set up for traffic shaping, as it dictates how exceeding traffic would be treated. |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.