To limit bandwidth on IPSec VPN in Sangfor NGAF, you can use the Bandwidth Management feature. This feature allows you to define bandwidth channels and apply them to specific interfaces, objects, and applications.
To limit bandwidth on IPSec VPN, follow these steps:
Go to Policies > Bandwidth Management > Line Definition.
Click Add to create a new line.
Enter a name for the line and select the WAN interface that the IPSec VPN is using as the egress interface.
Enter the actual bandwidth of the ISP in both inbound and outbound bandwidth.
Click OK to save the line.
Go to Line Policy.
Click Add to create a new bandwidth channel.
Enter a name for the channel and select the line created in the previous step as the target line.
Select Limited Channel as the channel type.
Enter the maximum bandwidth that you want to limit the IPSec VPN to in the Use and Max Bandwidth field.
Click OK to save the bandwidth channel.
Go to Applicable Objects.
Select the IPSec VPN interface as the source object.
Select the destination network as the destination object.
Click OK to apply the bandwidth channel to the IPSec VPN.
Once you have completed these steps, the bandwidth of the IPSec VPN will be limited to the value that you specified in the Use and Max Bandwidth field.