This page shows the list of defined service classes. This is an ordered list; the first matching service-class definition will be used. Each service class has controls to move the definition within the list, edit the definition, or delete it.
By default, only the service class names are shown, but they can be expanded to summarize their definitions as well.
Rules can be based on the application, source and destination IP address, VLAN tag, or the incoming DiffServ (TOS/DSCP) bits. If the SSL Profiles field is used, any traffic matching the service class is considered to also match the selected SSL profile.
The traffic-shaping policies can be set to the same policy for all links or with per-link policies. In most installations, per-link policies are not desirable.
Multiple rules can be specified. Fields within a single rule are ANDed together, so all specified fields must match. When multiple rules are used, they are evaluated in order. If any rule matches, the traffic is considered to belong to the service class.
Traffic-shaping policies are chosen from the pull-down menu. By default, a range of policies from Very Low to Very High are defined, each policy having twice the weighted priority of the next-lower policy. In addition, there is a VoIP Traffic policy that has an effectively infinite weight (and thus must be used with caution), and a Default Policy.
Flow Control Only--The Flow Control checkbox enables or disables acceleration. Recommended for traffic that is 100% uncompressible because the same data will never be seen twice (mostly encrypted protocols and live video). Note that pre-compressed traffic such as JPG images, ZIP archives, and audio/video streams that are played more than once are all highly compressible on the second pass. For example, if two people play the same YouTube video, the compressor will achieve a high compression ratio for the second users, since the video data will be the same as before and will match the first copy.
Disk Compression--Enables flow control and the full range of compression features (disk-based and memory-based compression). Recommended for most traffic.
Memory-based Compression--Enables flow control and memory-based compression only. This option is rarely used.
Acceleration policies are based solely on information available on the first packet of the connection (the SYN packet). The results of deep packet inspection are not available until later in the connection, so such matches cannot be made.
Acceleration policies are only meaningful on accelerated connections.
Traffic-Shaping Policy--The initial traffic-shaping policy is based on the first packet seen, but deep-packet inspection may change this decision. For example, an application that is defined based on a URL will match when a data packet containing an HTTP GET url command is seen. This will reclassify the traffic-shaping policy for the connection.
All WAN data flows have a traffic-shaping policy, whether they are accelerated or non-accelerated, TCP or non-TCP.
Other TCP Traffic is a special category that specifies the default acceleration action to take if no other service classes apply.
The Web (Private) and Web (Private-Secure) service classes define HTTP and HTTPS service on the standard private networks of 10.0.0.0/8, 172.16.0.0/12, and 192.168.0.0/16, as defined in RFC1918. These addresses are not routable on the public Internet, and instead are used by most organizations for their private networks. As such, we can assume that the problem of paranoid firewalls will not occur on these networks, and HTTP and HTTPS traffic can be accelerated normally.
The Web (Internet) and Web (Internet-Secure) service classes are for non-private Web traffic and have flow control and compression disabled.
The ordering of the two sets of rules is important; the Private rules need to occur first in the Service Class Policy list.
These rules are not necessary unless Internet traffic passes through a single Appliance. If Internet traffic passes through two Acceleration units (two Appliances or an Appliance and a Plug-in), the Internet rules can be set to the same values as the Private rules, allowing acceleration on all Web traffic.
This tab reiterates the service classes, but with the traffic-shaping policies listed as one line per link, to make it easier to examine or alter per-link policies.