08-27-2018 04:19 PM - edited 02-21-2020 08:09 AM
Hello Cisco Guru's,
As a start i am no expert at ASA's but manage to find my way around them, i apologize in advance if my question seems dumb.
I have a new 50Mbit/s synchronous link over fibre that the provider implements heavy traffic policing, with this they suggested i setup some shaping on our ASA to 47Mbit's with 50Mbit's bursts, i am hoping i have done this correctly. This is on an ASA 5520.
object network PABX
host 192.168.3.50
object network VOIP
subnet x.x.x.0 255.255.255.0
object-group service SIP-Trunks tcp-udp
port-object range 10020 10067
port-object eq sip
object-group protocol TCPUDP
protocol-object udp
protocol-object tcp
!
access-list outside_access_in extended permit object-group TCPUDP object VOIP object PABX
object-group SIP-Trunks
!
access-list global_mpc extended permit object-group TCPUDP 192.168.3.0
!
class-map DM_INLINE_Child-Class
match access-list global_mpc
!
policy-map DM_INLINE_Child-Policy
class DM_INLINE_Child-Class
priority
policy-map outside-policy
class class-default
shape average 47000000 50000000
service-policy DM_INLINE_Child-Policy
!
service-policy outside-policy interface outside
In addition i have setup voice traffic (SIP and RTP) for traffic prioritization, hoping i have done this correctly too.
Your help is much appreciated.
08-27-2018 04:25 PM
08-27-2018 04:27 PM - edited 08-27-2018 04:28 PM
Yes, you are absolutely correct. We need to shape all traffic to 50Mbps but prioritize Voice.
08-27-2018 05:56 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide