I'm assuming the LTE is plugged into WAN1? If so, your config is correct. Sometimes people calculate traffic shapping slightly differently (for example, some systems only count the payload others count the header+payload). Perhaps try loweing your numbers slightly on WAN1 and see if that makes any difference. Is there any chance you are simply generating a lot more load for short periods of time and the traffic is being correctly dumped? Traffic shapping can only buffer the traffic for so long before dumping it. Also note that IPSec does not always respond that well to traffic shapping. It has something called a "replay window". If packets get reordered by something (such as some smaller packets get sent before some larger packets) and the re-ordering is greater than the replay window the whole VPN will oftten tear down and then rebuild. Also if your cellular provider is using carrier grade NAT and the UDP sessions are torn down after a fixed period of time you'll see constant VPN rebuilds happening, each time causing traffic loss. If your cellualr provider gives you public IP addresses with no firewalling you tend to have less issue (this is often done by selecting a specific APN).
... View more
