ASA 5510 7.2 QoS questions

wilson_1234_2 · ‎02-17-2010

Is it possible to create a QoS policy to prioritize inbound traffic to our web servers from clients, while also shaping the traffic outbound for user Internet access?

For example, I would liket to create a priority queue to guarantee a certain amount of BW for users going to our web servers, while also prioritizing certain outbound traffic and limiting certain traffic:

inbound traffic to web servers - Prioritize (gura

outbound traffic from log host in our DMZ to third party - Limit

download traffic from inside users - Limit

outbound traffic per ACL - Prioritize

Can I do this?

Also, my understanding has always been that you cannot use QoS on traffic that traverses the Internet because you have no control end to end, but if I have a WAN link and create a QoS policy and apply it in the outbound direction for voice and data, I am only controlling the traffic on one end correct?

As long as the packets leave the Interface in a certain priority, won't they get delivered to the other end in that priority, either by Internet or MPLS, correct?

Ivan Martinon · ‎02-18-2010

Shaping, Policying and Priority Queuing are supported on the ASA, pleasae refer to the folloing doc to see how to apply what you need:

http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/qos.html

HTH

Ivan

Panos Kampanakis · ‎02-18-2010

Prioritizing your traffic as it leaves your network for Internet traffic helps because they are sent in the order they are seen. There is no guarantee that the Internet will indeed do so, but most of the times that is how they also travel through the Internet cloud, so the priority helps.

For some examples you can look into http://supportforums.cisco.com/docs/DOC-1230

I hope it helps.

PK