PIX ver 7 rate limiting - Cisco Community

275

Views

0

Helpful

2

Replies

We need to split a 100M ISP ethernet connection into 10Meg for Internet access and 90Meg for a DR site-to-site vpn

Was thinking along the lines of this config...

class-map vpnsite-site

match tunnel-group xxx.xxx.xxx.xxx

policy map qos

class vpnsite-site

police outside 90000 0

class class-default

police outside 10000 0

service-policy qos interface outside

Is this a feasible solution?

Can I also apply the QOS policy to the inside interface aswell?

Thanks,

2 Replies 2

Hi

As you have mentioned in your post you are trying to police 90Kbps in the first class map and 10Kbps in the second class map.

Do check out the values being configured for both allowed b/w and the burstable b/w.

As per ther supporting doc it does says that you can apply service policies to any of the interfaces which are configured using nameif command.

so i dont see much of problems in applying the service policy to the inside interface.

For more info and help do refer these links..

http://cisco.com/en/US/products/sw/secursw/ps2120/products_configuration_guide_chapter09186a0080450b9a.html#wp1055789

http://cisco.com/en/US/products/sw/secursw/ps2120/products_configuration_guide_chapter09186a0080450b9a.html#wp1045477

regds

Thanks for the feedback, very helpful.

Best regards,

Mark

Learn, share, save

Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.

New here? Get started with these tips. How to use Community New member guide

Log in to Community

Review Cisco Networking for a $25 gift card